Single Sign-On with Okta

HelpDesk users can use Single Sign-On (SSO) for accessing their account. Admin of the accounts can choose a SAML 2.0 identity provider (IdP) to enable technicians to login to HelpDesk without having to remember another password.

To setup Single Sign-On (SSO) with Okta, the admin needs to:

Create an app on Okta Console

Create an app on Okta console and use it as an identity provider for SSO.

To create the app,

  1. Log in to the Okta console using your Okta account credentials.
  2. Click 'Admin' on the top-right corner to navigate to the admin console.
    • This step is for developer accounts only. Skip this step in case you are using a regular production account.
    • In case it reads 'Developer Console' in the top-left corner, click the drop-down and select 'Classic UI' to switch to the Classic.
  3. Navigate to the 'Applications' tab and click 'Add Application'.

    Helpdesk SSO
  4. Click 'Create New App'.

    Helpdesk SSO
  5. Select 'SAML 2.0' and click 'Create'.

    Helpdesk SSO
  6. Enter 'App name' and click 'Next'.

    Helpdesk SSO
  7. Add the 'SSO URL' and 'Audience URL' then click 'Next'.

    Helpdesk SSO
  8. Select 'I'm an Okta customer adding an internal app'. Select 'This is an internal app that we have created' checkbox.

    Helpdesk SSO
  9. Click 'Finish'.
  10. Go to 'Sign On' tab and click 'View Setup Instructions'. You will be directed to a web page where you will find SAML 2.0 Single Sign-On Login URL, Issuer URL and the X.509 Certificate. Copy these and paste them in your HelpDesk account via the web interface.

    Helpdesk SSO
Assign technicians to the app

To enable SSO for technicians, admin needs to assign users to the new app on Okta console.

To assign technicians,

  1. Launch the new app on Okta console.

    Helpdesk SSO
  2. Click 'Assign'.
  3. Select 'Assign to people' and assign users for SSO.

    Helpdesk SSO
Configure HelpDesk account for Single Sign-On (SSO)

Admin needs to provide the received SAML 2.0 URLs and Certificate in the Single Sign-On application from the HelpDesk web interface.

To configure SSO,

  1. Log in to the HelpDesk application via any web browser.
  2. Click the username on the top-right corner and click 'My Account'.
  3. Click 'Single Sign-On'.
  4. Enter a name for your SSO profile.
  5. Enter the 'Issuer URL', 'SAML 2.0 Single Sign-On Login URL' and add the 'X.509 Certificate' received from your newly created app on Okta console.

    Helpdesk SSO
  6. Click 'Configure Single Sign-On'.

You will receive a confirmation email once SSO is enabled for your account.