Using Single Sign On with Okta

In this blog post, we will walk you through how to use Single Sign On with Okta. Single Sign On is mechanism where a single action of login provides access to multiple services including GpsGate server. As one of the main benefits it reduces the number of passwords you need to remember and it also decrease the time spent on login to various services.


Installation

We will install SAML plugin to configure Single Sign On on GpsGate server.
The plugin name refers to Security Assertion Markup Language (SAML) standard, it defines a framework for exchanging security information between online business partners.

1. Log in to SiteAdmin and navigate to Plugins tab
2. Change the repository url to beta.gpsgate.com
3. Install Saml plugin

Setup

1. Click on the Saml menu in Applications tab in SiteAdmin.
sso menu

2) Click on Add button and select an application for single sign-on from the drop down list.
sso new
At this point you need to chose an Identity Provider that provides an endpoint for SSO and supports SAML 2.0 protocol. In this example we will show you how to use Okta as identity provider.
Do not click the Create button yet because will get back to this step later.

3) Go to Okta‘s homepage, register an account and log in to the admin user interface.

4) Click on Add Application button on Applications tab.
Okta add applications
On the next page click Create New App on the left side.

5) Select SAML 2.0 as sign on method and click Create.
Okta select sign on method

6) In general settings, fill the App name that corresponds with the GpsGate application name and click Next
Okta app general settings

7) Copy-paste the Single Sing on URL and Audience URI from step 2) and click Next
Okta app saml configuration

8) Select the options as shown below and click Finish.
Okta app finish

9) Click Assign people on People tab
Okta assign people
In the next view you can find the person that you want to assign to the app.
Okta select person
When selected a person, fill the GpsGate username you want to associate with the Okta user.
Okta gpsgate username

10) Right click and copy the link of the Identity Provider metadata url on the Sign on tab (from the section highlighted with yellow color).
Okta app saml configuration
Now you can continue step 2:
Paste the Metadata url and click Create button. GpsGate will download the metadata in the background and pair your GpsGate application with the Okta App. 
sso paste metadata url

11) Congratulations, you successfully configured the SSO.
sso identity provider successfully created
When you visit the Single Sign On Url associated with your application, you will be automatically logged in to GpsGate when you are already logged in to Okta. 
Note: it is possible to sign in to Okta using Active Directory to make the login more convenient.


  Discuss this blog post on the forum please



Download free GpsGate Server

Install it on your own server. The installation is free for 5 users.

Download Now