Configure SAML with Okta

This document provides specific steps for integrating with Okta for SAML.

  1. Log into Helpy as an Administrator.

  2. Click settings, and choose the “Authentication” settings menu item.

  3. Select SAML SSO. You will see the following panel:

    [insert image]

  4. There are two URLs you will need from here:

    The “Assertion Consumer Service URL” also known as the SSO URL. It will look like this:

    http://your_help_hostname/users/auth/saml/callback

    The Issuer (commonly known as the SP Entity ID)

    http://your_help_hostname/users/auth/saml/metadata

  5. Log into Okta as an Admin. Make sure you use the “Classic UI”.

  6. Create a new App and select SAML 2.0 from the dialogue

  7. Give App a name (Helpy or Helpdesk usually work fine).

  8. Add the Assertion consumer service URL to the “Single Sign on URL” field.

  9. Add the “Issuer” to the Audience URI field.

  10. Set the NameID format to “EmailAddress” and Application Username to “Email”

  11. Next you should add two attributes:

    email: user.email
    name: user.displayName

  12. Click “View Setup Instructions”. You will now copy and paste some information back into Helpy:

    IdP Entity

    Idp Cert (x.509)

    Idp SSO Target

  13. Click “save” then toggle the switch to “Enable the SAML” option on the Helpy Login page. If you want to still enable login with SAML but not display the Login button, the enabled turn off.

Did this solve your problem?