3242301 - Configuring SSO with OKTA

 We are using OKTA as IDP and want to integrate our Signavio workspace into it. Which steps do we have to perform?

The information provided does not imply that SAP Signavio Product Support have any expertise in setting up 3rd party identity provider (IdP) systems for customers. These are merely bits of information that were gathered over time while configuring the SAML SSO with identity providers, which may help you with a smoother setup. If you require assistance setting up your IdP system, please reach out to your consultant, partner, or specialized support.

• Create a new OKTA application. Use the option "Web" and "SAML 2.0."
• Now, choose a name for your new application.
• Use the following values for the configuration:
  
  • Single Sign on URL (refer to: ACS Field) and Audience URl (refer to: EntityID) can be found in this article
    KB0381167 - Which SAML Assertion Consumer Service(ACS) URL / EntityID will be used by Signavio?
  • Name ID format: unspecified
  • Application username: Email

  In the "Attributes" section, add the following:

  Name	Value
  first_name	user.firstName
  last_name	user.lastName
  email	user.email

• Click the button "Next"

• On the feedback page select "I'm an Okta customer adding an internal app"

• Now click on "View Setup instructions" and download the IDP metadata from the newly created application (The file has to be uploaded into your Signavio workspace)

• Add your AD-User/-groups, who shall have access to the application, on the "Assignments"-Tab

Afterward, the configuration is done, and the app can be found on the Home-screen of your OKTA-organization. The synchronization can take some minutes.

• Signavio Documentation on Single sign-on using SAML
• KBA KB0493053 - SAML/SSO Options for the Signavio Suite

okta,saml,signavio,sso,configuration , KBA , BPI-SIG-CA-SEC-SAM , SAML 2.0 for SAP Signavio , How To

SAP Signavio Process Manager all versions ; Signavio Process Manager all versions