Start Trial

Okta SAML Integration

SAML (Security Assertion Markup Language) is an open standard for exchanging security information and providing single sign-on (SSO) between 2 parties: an identity provider (IdP) and a service provider (SP).

This document walks you through setting up SAML-based authentication between DeltaStream (SP) and Okta (IdP).

Find the Okta documentation for configuring the SAML integration at https://help.okta.com/en-us/content/topics/apps/apps_app_integration_wizard_saml.htm

Initial Okta Setup

  1. Log into your Okta dashboard. Then from the applications menu click Create App Integration.

New app integration

  1. For the sign-in method, click SAML 2.0 and then click Next.

SAML 2.0

  1. Update the General Settings for the DeltaStream app integration. Optionally, also set up the DeltaStream Logo for your application.

  1. Set up the SAML integration with the following values:

Important You must retain the default values for any setting not mentioned below.

General settings

Field
Value

Single sign-on URL

https://auth.deltastream.io/login/callback?connection=ds-okta-saml-placeholder

Audience URI

urn:auth0:deltastream:ds-okta-saml-placeholder

Name ID format

EmailAddress

Application Username

Email

Update application username on

Create and update

Attribute Statements

Click Add another and add the following mappings:

Name
Name format
Value

email

Basic

user.email

firstName

Basic

user.firstName

lastName

Basic

user.lastName

The screenshot below provides a visual reference. Enter the required values and then click Next.

  1. Contact DeltaStream at [email protected] and provide the following information:

  • Your company's name

  • Your company's email domain

  • First Org admin's email address (you can add more later)

  • Saml 2.0 Metadata URL

Navigate to the SAML Application Sign On tab for the values for Metadata URL. Do not use values from the General tab.

Complete Okta Setup

After the integration is complete, DeltaStream provides you with the final Audience URI, which you must update in Okta. To do this:

  1. Log into your OKTA dashboard. Then, from the applications menu, click DeltaStream.

  1. Click to activate the General tab. Then, for SAML Settings, click Edit.

  2. On the General Settings page, click Next.

  1. Update the Single sign-on URL with the value DeltaStream provides you.

  2. Update the Audience URI (SP Entity ID) with the value DeltaStream provides you.

  3. Click Next and Finish to complete editing the Okta integration.

References

PreviousSetting up Enterprise Security IntegrationsNextOkta SCIM Integration

Last updated