Skip to main content

Create SAML application in Okta

Use this procedure to configure Single Sign-On (SSO) between your DigiCert® account and Okta using SAML 2.0.

You’ll need to complete setup in both DigiCert and Okta, and switch between the two tabs to exchange URLs and metadata.

Once completed, users in your account will be able to sign in to DigiCert from their Okta dashboard or via the DigiCert sign in page with their Okta credentials.

Nota

For more information, refer to Okta Help Center.

Before you begin

You'll need elevated privileges in DigiCert account and Okta to configure SSO:

  • Account admin user group required in DigiCert account.

    How do I check my user group?

  • Application Administrator or equivalent role required in Okta.

Step 1: Open DigiCert account

1. Access SSO settings

  1. In the DigiCert​​®​​ account menu, select the Accounts icon > Sign-in methods.

  2. Select Single sign-on with SAML.

2. Copy SSO URL

  1. In the Connect DigiCert to your IdP section, copy the SSO URL.

    SAML_connect_DigiCert_to_your_IdP.png

  2. Leave this window open.

Step 2: Open Okta

1. Create SAML application

  1. Sign in to your Okta Admin dashboard.

  2. Go to Applications > Applications.

  3. Select Create App integration:

    1. Select SAML 2.0 as the Sign-on method.

    2. Select Next.

    3. Enter DigiCert​​®​​ account as the App name.

    4. Optional: Add a logo to the App logo field.

      Need a DigiCert logo?

2. Paste the SSO URL

On the Configure SAML tab, complete the following fields:

  1. Paste the SSO URL from DigiCert account in Step 1 into both of the following fields:

    1. Single sign-on URL

    2. Audience URI (SP Entity ID)

  2. In the Name ID Format field, select Email address.

  3. In the Application username field, select Email.

  4. Select Next.

  5. Select Finish.

3. Create the metadata file

To create the Okta metadata file that you'll need to provide to DigiCert:

  1. Select the Sign On tab > View SAML setup instructions.

  2. In the Optional section, copy the IdP metadata.

  3. Paste the IdP metadata into a notepad and save the file in .xml format.

  4. Leave this window open.

Step 3: Back in DigiCert account

1. Upload the Okta metadata

In the Connect your IdP to DigiCert section, select Upload metadata.

SAML_connect_IdP_to_DigiCert.png

2. Enable SSO

  1. In the Enable/Disable SSO with SAML section, toggle to enable SSO.

    Enable_SSO.jpg

  2. Select Save configuration.

Step 4: Back in Okta

1. Assign users to your SAML app

In Okta Admin dashboard:

  1. Go to Applications > Applications.

  2. Select DigiCert account app you just created.

  3. Select the Assignments tab.

  4. Select Assign > Assign People.

  5. Next to the user's name, select Assign.

  6. Select Save and Go Back.

  7. Select Done.

2. Test your SAML connection

In Okta Admin dashboard:

  1. In the top right corner, select ∷ > My end user dashboard.

  2. Select the DigiCert account app that you just created.

    Sugerencia

    • Your SAML app is configured correctly if you are redirected to DigiCert account and asked to complete two-factor authentication (2FA).

    • If you are not redirected to the 2FA page in DigiCert account, please compare your app settings to the instructions above or contact DigiCert support for assistance.

DigiCert logos

Use of DigiCert's logo must at all times comply with DigiCert brand guidelines, including the DigiCert Trademark Usage Guidelines available at https://www.digicert.com/legal-repository/ (as updated from time to time).

DigiCert_White_on_Blue_Logo.png
DigiCert_Blue_on_White_Logo.png

DigiCert logo's for SSO configuration.

En esta sección: