How to use Okta with Cloud SSO

There are two main ways to log into Cloud: using a login/password created in Cloud itself or using SSO. Logging in with SSO is supported for identity providers that offer SAML (Security Assertion Markup Language) or OIDC (OpenID Connect). Okta is such an identity provider or IdP.

This article explains how to do the necessary SSO setup in Okta to then complete an SSO configuration in Cloud. Note that for these Okta instructions we're using SAML as an SSO connection type.

This article explains where in Okta to gather the SSO connection details that you need to submit in the Add SSO Connection popup in Cloud. Make sure to read the general Cloud SSO instructions first, before reading this article. This article only explains where in Okta to find and input the details of the SSO connection. It does not explain the entire Cloud SSO setup process.

1. Create SAML app integration in Okta

Go to your Okta dashboard and click on the Applications menu. Hit the Create App Integration button, choose SAML 2.0 and hit Next. Choose a name for your app integration and hit Next.

2. Upload Okta certificate to Cloud

Click on the Download Okta Certificate button. Rename the resulting file so it ends in .cer instead of .cert and then upload it in the Add SSO Connection popup in Lansweeper.

3. Copy Entity ID and ACS URL from Cloud to Okta

Copy the Entity ID from the Add SSO Connection popup in Lansweeper and paste it in your SAML settings in Okta. The field you need to paste the value into in Okta is called Audience URI (SP Entity ID)

Copy the Assertion Consumer Service (ACS) URL from the Add SSO Connection popup in Lansweeper and paste it in your SAML settings in Okta. The field you need to paste the value into in Okta is called Single sign on URL

4. Configure attribute statements in Okta

In Okta, scroll down to the Attribute Statements section and add the following two attributes:

  • Name: email, value: user.email
  • Name: email_verified, value: true
Do not skip this step. Adding these attributes is important as they are required by Cloud's underlying SSO login process.

5. Copy IdP SSO URL from Okta to Cloud

In Okta, hit Next and answer the remaining setup questions. Hit the Finish button, after which you will be redirected to the Sign On section of your newly created app. Here, you can click on View Setup Instructions

Copy the Identity Provider Single Sign-On URL seen on the resulting page and paste it into the Add SSO Connection popup in Lansweeper. The field you need to paste the value into in Lansweeper is called Sign in URL

Related Articles

Get Started Right Away

Try Lansweeper for Free