Reachdesk supports signing in via SAML with identity providers such as Okta and OneLogin. Once setup and enabled, the users within your organization will be able to sign in through your IdP (password authentication will become disabled).
UPDATE: We're now in the Okta app catalog, so all you need to do is add our app HERE.
Here's a step by step guide to manually activate Okta:
1. Create Okta Application
In Admin > Applications, click on the “Create Application” button;
A popup will show up, in the Platform field choose “Web”,in the Sign one method choose “SAML 2.0” as shown below, and click Create;
It will redirect you to a form for creating the SAML integration. In the first step, General Settings, fill the App Name field with “Reachdesk” and click Next (you may optionally include an App logo);
In the next step, SAML Settings, fill the form with the following settings (the fields not mentioned below should be left with their default values):
- Single sign on URL: https://app.reachdesk.com/users/saml/auth
- Audience URI (SP Entity ID): https://app.reachdesk.com/users/saml/metadata
- Name ID format: Transient
- Application username: Email
- Update application username on: Create and update
The General section should look like the screenshot below:
The Attributes Statements section should be filled up to match the screenshot below:
Finally, scroll to the bottom of the page and click on Next to continue. On the Feedback section select “I'm an Okta customer adding an internal app” and press Finish.
You will be redirected to the Reachdesk Application page in the Sign On section. Click on the link Identity Provider metadata and save the Metadata XML (File > Save As).
2. Setup SSO in Reachdesk
Sign in to your Admin account in Reachdesk and navigate to Organization > Single Sign On. In the SSO via SAML page, click on Upload File and upload the Metadata XML from the previous step;
Once uploaded, in the Enable SSO For Organization section, click on the toggle to enable signing via Okta (signing in with password will be automatically disabled);
And that's it! You are now enabled to allow your users to sign into Reachdesk with Okta.