Deskradar Documentation

Appearance

Single Sign-On with Okta

This guide demonstrates how to configure single sign-on with Okta.

Okta Configuration

Okta documentation provides own guide for integrating SAML 2.0 applications: https://developer.okta.com/docs/guides/saml-application-setup/overview/

Sign in to your Okta organization as a user with administrative privileges.

Add SAML App

  1. In the main navigation on the left hand side, click Applications > Applications.
  2. Click Create App Integration.
  3. In the Create a New Application Integration dialog box, select SAML 2.0 and click Next.

Create SAML Integration: General Settings

  1. App name Deskradar
  2. Upload Deskradar logo into the field App logo.
  3. Click Next.

Create SAML Integration: Configure SAML

  1. Set Single sign-on URL: https://YOUR_DOMAIN.deskradar.cloud/auth/sso/saml/consume Replace YOUR_DOMAIN with your Deskradar instance domain.
  2. Set Audience URI (SP Entity ID): https://YOUR_DOMAIN.deskradar.cloud Make sure you specify the value exactly. Protocol has to be https, there must be no trailing slash or any other additions at the end.
  3. Leave Default RelayState blank.
  4. Leave Name ID Format set to Unspecified.
  5. Set Application username to Email.
  6. In the section Attribute Statements define following attributes:
NameName formatValue
EmailUnspecifieduser.email
FirstNameUnspecifieduser.firstName
LastNameUnspecifieduser.lastName

Attribute Statements

  1. Click Next.
  2. Click Finish.

SAML Settings

Expand SAML settings box by clicking More details.

Take a note of the contents of the fields Sign on URL, Issuer.

It is important to download Signing Certificate as a file.

Expanded SAML 2.0 details

Deskradar Configuration

  1. Sign in to Deskradar with email and password as a user with an Administrator role.
  2. Open Team panel by clicking the icon in the Sidebar.
  3. Switch to Single Sign-On tab.
  4. Enable SAML authentication method.
  5. In the fields enter the information obtained from Okta.
    • SAML SSO URL: Use Sign on URL from Okta
    • Identity Provider Issuer: Use Issuer from Okta
    • Public Certificate: Use contents of the Signing Certificate file you downloaded from Okta

Sign In from Deskradar

  • Launch your Deskradar instance by opening URL in your browser: https://YOUR_DOMAIN.deskradar.cloud Replace YOUR_DOMAIN with your Deskradar instance domain.

  • Click Enterprise Single Sign-On button on the login view: Click Enterprise Single Sign-On

  • You will be signed in to Deskradar directly, if you’re already signed in with Okta.

  • You will be redirected to Sign In form on Okta, if you’re not signed in yet. You can enter your credentials there to sign in to your Okta account.

  • You will then be taken back to Deskradar and signed in to Deskradar as Okta user.

Sign In from Okta

You can launch Deskradar from your Okta User Home. You will be signed in right away.