Skip to main content
All CollectionsGet started on Athenian! Setup & onboardingAdvance Configuration
Set up SAML in Okta
Set up SAML in Okta

To authenticate users, Athenian now supports SAML SSO that you can set up in your Okta following the steps in this article.

Waren Long avatar
Written by Waren Long
Updated over 2 years ago

What you will need

  • Okta as your identity management provider.

  • An Okta user with permissions to create Application Installations.

Process overview

  1. Create the App integration

  2. Assign users to the created application

  3. Share with the details of the App

1. Create the App Integration

Open the administrator console, go to Applications → Applications and click “Create App Integration”.

Choose "SAML 2.0" and click "Next".

Fill in the general settings

  • App name → “Athenian”

  • App logo → attached file: logo.png

Configure SAML

First, choose the string which identifies your company name. The string must satisfy the regular expression ^[a-zA-Z0-9](-[a-zA-Z0-9]|[a-zA-Z0-9])*$. As an example, let's consider the company name: MilkyWay. Then fill in the following settings:

  1. Single sign-on URL: https://athenian-production.auth0.com/login/callback?connection=MilkyWay

  2. Audience URI (SP Entity ID): urn:auth0:athenian-production:MilkyWay

Add Attribute Statements

Scroll “Configure SAML” down and add two attribute statements. They are needed for Athenian to fetch the logged-in user name and email.

  1. Click “Add Another”.

  • Name: name

  • Name format: Basic

  • Value: user.firstName + ' ' + user.lastName

  1. Click “Add Another”.

  • Name: email

  • Name format: Basic

  • Value: user.email

Click “Next” to proceed to the final settings page.

In the Feedback tab, we recommend selecting: “I’m an Okta customer adding an internal app” and checking “This is an internal app that we have created”. Click “Finish”.

2. Assign users to the created application

Switch to the “Assignments” tab and click the “Assign” button. If you don't have specific constraints, it is easier to select the “Everyone” group in the following dialog.

Switch to the “Sign On” tab and click the “Identity Provider metadata” pointer. That XML file is one of the elements to share with us so that we can finalize the integration on Athenian's side.

3. Share the details of the App with Athenian team

  • The company name you've chosen (aka. MilkyWay) in the “Configure SAML” step.

  • The "Identity Provider metadata" XML file.

  • Your corporate email domain. For example, ours is athenian.com.

Congratulations! You have successfully set up SAML SSO to work with Athenian.

Did this answer your question?