Versions Compared

Old Version 1

changes.mady.by.user Gjøran Moen

Saved on

compared with

New Version 2

changes.mady.by.user Gjøran Moen

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Choose a name for your identity provider. This is the user-facing name, so choose a name your users will recognize. This can be changed later.

...

2. Prepare IDP

In this step, you configure AD FS to work with Kantega SSO. The easiest way to prepare AD FS is by using PowerShell. Copy the script, you need it in the next step.

Make sure you are accessing the Atlassian application using https.

...

Copy and save the Callback URL for later. You will need this when configuring Okta

...

Configure OKTA

Status
colourPurple
titleExternal

Login to your AD FS server and start a PowerShell terminal window as an administrator. Then paste the PowerShell script into the terminal window and run it.

...

Your Atlassian application is now added as a relying party in AD FS.Okta as an admin user.

Go to Applications → Applications in the menu and choose Create App Integration.

...

Choose SAML 2.0 as Sign-in method and click Next.

...

Under General Settings enter a suitable App name and click Next.

...

Paste the Callback URL you kept from the KSSO setup wizard in the Single sign on URL and the Audience URI fields.

Then add the following attributes to the Attribute Statements list:

  • givenName with format Unspecified and value user.firstName

  • surname with format Unspecified and value user.lastName

  • email with format Unspecified and value user.email

...

Click Next.

Fill out appropriate background info for the Okta support team and click Finish.

...

On the next page, locate and click the View SAML setup instructions button. Its located in the bottom right part of the page.

...

This opens a page with SAML setup information.

Copy all the XML content from the IDP metadata text field, located under the Optional heading at the bottom of the page. You will need this content afterwards in the KSSO setup wizard.

Note that all content of the IDP metadata text field may not be visible without expanding the text field size.

...

Go back to the Kantega SSO setup wizard.

3. Metadata

Type the hostname of your AD FS server in the import Metadata step. Importing metadata using the AD FS hostname is recommended, as it allows for automatically updating certificates. 

...

Choose Paste metadata XML.

Paste the XML content you kept from the Okta app integration setup into the associated text field and click Next.

...

4. Redirect URL

No need to do anything. The Redirect URL is automatically fetched from the metadata you imported in the previous step.

...

This step shows the certificate used to validate the SAML messages.

...

6. Summary

Check that everything looks good and submit your setup (smile)

...

Test

Test that the log in with AD FS Okta works as expected. This will help identify if there are any issues with the configuration. Follow the steps to perform the login test.

...