Add an Okta SAML application
This topic describes how to create an Okta SAML application.
Before you begin
Determine the values for the following items:
- Single sign on URL: SAML Post URL location. This is often referred to as the SAML Assertion Consumer Service (ACS) URL for the target application.
- Audience URI: The application-defined unique identifier that is the intended audience of the SAML assertion. This is often referred to as the SP Entity ID of your application.
Create a direct-access application in your Okta org
- Sign in to your Okta org as an administrator.
- In the Admin Console, go to Applications > Applications.
- Click Create App Integration.
- In the Create a new app integration dialog, select SAML 2.0.
- Click Next.
- Enter an App name.
- Click Next.
- In the Configure SAML step, in the SAML Settings section, enter values for these fields:
- Single sign on URL
- Audience URI
- Click Next.
- On the last page, select I'm an Okta customer adding an internal app,.
- Click Finish.
Determine the SAML application URL
Okta bookmark applications require a specific URL for the SAML application.
- Click the name of the newly added application.
- Click the Sign On tab.
- In the SAML 2.0 section of the Settings page, click Identity Provider metadata.
- Select and copy the metadata. This metadata is provided to the SAML application to generate the URL.
The following steps vary based on the SAML application. See the application provider's documentation for obtaining the appropriate URL.
- Go to the SAML application. In this example, go to https://SAMLtest.examplecom > IDP initiated SSO
- Paste the metadata into the metadata content field and click SUBMIT XML.
Next steps
Create an Access Gateway SAML proxy application
Related topics
Create SAML app integrations