Configure SAML with OKTA

1. Check OKTA from the Provider option and for the Protocol select SAML V2.0 as shown in the figure below.

2. Log in to your OKTA account.

3. Click on Applications and from the drop-down select Applications.

4. Click on Applications and select Browse App Catalog.

5. Search for KloudHybrid in the Browse app integration catalog window that opens.

6. Select the KloudHybrid option with SAML, provisioning.

7. The KloudHybrid window will open. Then click on Add.

8. In the Add KloudHybrid window, type the Application label (Eg. KloudHybrid) under General Settings. Also, copy and paste the Base URL from the KloudHybrid application. This will look something like “https://xxxx.yyyy.kloudspot.com”.

9. Click on Done in OKTA.

10. In the next window, click on the Assign button at the bottom of the Assignments tab. Select Assign to groups from the drop-down menu that appears.

11. A popup window will open. From there, assign the groups that will have access to the KloudHybrid Application.

12. Click on Done.

13. Then select the sign-on tab. In it, scroll down and click on the View Setup Instructions button.

14. Then a new tab will open. You will be able to complete the configuration by following the instructions given in it.

15. Copy the Identity Provider single sign-on-URL, Identity provider Issuer and X.509 verification certificate and paste them into KloudHybrid, respectively.

16. Click on the Edit button in the sign-on tab to configure SAML 2.0.

17. In the Groups drop-down menu, select the Start with option. Then type the prefix of the group to be added (Eg.Ks-)

18. Click on Save.

19. To map permissions, see step #9 in the Configure Open ID connect with OKTA section.

20. Click on save.

21. This allows you to login into KloudHybrid with OKTA SAML with a single click.