Purpose
The goal of this article is to help you understand how to configure SSO with Okta.
Setup Procedure
1. Log in to Okta
Log in to Okta with your administrator account.
2. Click [Applications] → [Applications] → [Browse App Catalog]
3. Enter "LegalForce" in the search box and click on the LegalForce app
4. Click "Add Integration"
5. Click [Done]
Important Note
LegalForce only supports SP-initiated SSO (a method in which the Service Provider initiates SAML authentication).
Therefore, we recommend checking "Do not display application icon to users" and "Do not display application icon in the Okta Mobile app."
6. Click the [Assignments] tab → [Assign] to assign users to be SSO targets
7. Open the [Sign On] tab and click [Edit] in the "Settings" section
8. Set the following three items in "Advanced Sign-on Settings" and "Credentials Details" and click [Save]
Okta settings | Input Value |
a : Endpoint URL | Copy and paste the " Endpoint URL " displayed on the LegalForce SSO settings screen |
b : Entity ID | Copy and paste the " Entity ID " displayed on the LegalForce SSO settings screen |
c: Application username format | Select " Email " |
9. Click View SAML setup instructions
With the Sign On tab open, scroll down to View SAML setup instructions.
10. Obtain the information required for SSO configuration on LegalOn side
Values to obtain from Okta | LegalOn Settings |
d: Identity Provider Endpoint URL (HTTP-Redirect) | Copy and paste it into " Identity Provider Endpoint URL (HTTP-Redirect) " on the LegalOn SSO settings screen |
e : Public key certificate used by the identity provider for signing (X.509 certificate) | Copy and paste it into " Public key certificate (X.509 certificate) used by your identity provider for signing " on the LegalOn SSO settings screen
|
This completes the Okta setup.