Configure SAML with Okta
Last updated
Last updated
In this quick tutorial, we will show how to properly configure Okta SAML for Thinfinity® Remote Workspace.
Navigate to your Okta space, go to the Applications tab, and create a new application using the 'Create New App' button
Chose 'SAML 2.0' as the Authentication Method
Assign a name to the application
Configure the 'Single sign-on URL' and 'Audience URI'
The 'Single Sign-on URL' address should be the following : 'https://[MyThinfinityWebSite]/SAMLAssertionConsumerService'
The Audience URI should be the URI used to connect to Thinfinity® Remote Workspace: 'https://[MyThinfinityWebSite]/'
Choose the Feedback options that applies to your application
Now that the application is created, it should redirect you to the 'Settings' window. Click on 'View Setup Instructions' for further information
In here you will get the 'Identity Provider Single Sign-on URL', the Identity Provider Issuer, and the Certificate provided by Okta
Now, open the Thinfinity® Configuration Manager, navigate to the 'Authentication' tab, press the 'Add' option and click on 'SAML':
In here, you will have to add the different values provided by Okta in order to enable SAML:
Below you’ll find an example on how it should look like:
After you finish adding all those values, press 'Ok'.
Click on the 'Mappings' tab. You can add the email address of the Okta user you want to validate under the 'Authentication ID Mask' section, by pressing 'Add'. Then you can add the Active Directory User on the 'Associated Permissions' section, also by pressing 'Add':
After you add the appropriate mappings, click on the 'Apply' button.
Navigate to the Thinfinity® Remote Workspace landing page, and you should see the 'Sign in with Okta SAML' option listed as an Authentication Method: