Okta IdP SSO setup instructions

1. Open a browser and log in to KaseyaOne.

2. In a separate browser tab, log in to the Okta User Portal.

3. Click Admin in the header bar to go to the Admin portal.

   

4. Click Applications > Applications on the left navigation menu and then click Browse App Catalog.

   

5. Search for the KaseyaOne application and then click on it to open it.

   

6. Click Add Integration:

   

7. Click Done on the General Settings page - the Application label is already set to KaseyaOne.

   

8. Go to the Sign On tab and click Edit.

   

9. Scroll down to the Advanced Sign-on Settings section and enter the KaseyaOne Company Identifier:

   

   To obtain this identifier:

   • Go to the KaseyaOne tab in your browser, navigate to the Admin Settings > Third-Party IdP view and copy the Company Identifier field value.

     Example 1: <8000000-00000-0000-00000000-00000000-0000-0000-0000-000000000000>
     Example 2: <Organization-8000000-00000-0000-00000000-00000000-0000-0000-0000-000000000000>

   • Go back to the Okta tab in your browser and paste the value in the corresponding field.

10. In the Metadata details section:

    • Copy the Sign on URL field value and do the following: 

      1. Go to the KaseyaOne tab in your browser and navigate to the Admin Settings > Third-Party IdP view.

      2. Paste the value into the Identity Provider Single Sign-On URL field.

         

    • Copy the Issuer field value and do the following:

      1. Go to the KaseyaOne tab in your browser and navigate to the Admin Settings > Third-Party IdP view.

      2. Paste the value into the Identity Provider Issuer field.

    • Download the Okta Signing Certificate.

11. Click Save when done to save the configuration settings.

1. Go to the KaseyaOne tab in your browser.

2. Navigate to the Admin Settings > Third-Party IdP view.

   

3. Upload Okta's IdP certificate that you downloaded in Step 1, #10.

4. Turn on the Enable Single Sign-On via SAML toggle to enable SSO integration.

1. Go back to the Okta tab in your browser.

2. Go to the Assignments tab.

   

3. Click Assign > Assign to People to assign the KaseyaOne application to Okta users, OR

4. Click Assign > Assign to Groups to assign the KaseyaOne application to Okta groups if you have groups.

   

   Users assigned must have the same email address in Okta and KaseyaOne to make SSO login work.

You can test your Okta SSO integration by logging in from either the Okta interface (IdP-initiated login) or the KaseyaOne login page (SP-initiated login).

To test SSO via IdP-initiated login

1. Log out of KaseyaOne.

2. In the Okta tab in your browser, go to the My end user dashboard and click the KaseyaOne SSO application tile.

   

3. Verify that you are redirected to and logged in to KaseyaOne.

To test SSO via SP-initiated login

1. Log out of KaseyaOne.

2. Log back in to KaseyaOne as follows:

   • Enter the Username and Company Name for your account and click Next.

   • Click Log In with Single Sign-On.

3. If already logged in to Okta (if you have an active browser session), verify that you are redirected to and logged in to KaseyaOne.

4. If not already logged in to Okta:

   • You will be redirected to the Okta login page — enter your credentials and complete the user login process.

   • Verify that you are redirected to and logged in to KaseyaOne.