How can we help?

SAML SSO - OKTA
Published • Last Updated

SAML SSO can be enabled by Admins by selecting the default Single Sign-on provider for their account as "SAML".

Talkdesk supports the integration with OKTA as a SAML SSO provider. This document details the configuration steps required to configure the communication between these two services.

 

Okta

  • In the left menu, expand Applications. Click on Applications, and select the Create App Integration button:

  • Select “SAML 2.0” and click Next:

  • In “General Settings”, give a name to your application, and then click on the Next button:

  • In “Configure SAML”, add the following URL in both the “Single Sign-On URL” and “Audience URI (SP Entity ID)” fields: https://<account name>.talkdeskid.com/login/saml/okta

 

  • On the “Name ID” format field, select the “EmailAddress” option from the dropdown menu:

 

  • Scroll down to the “Authentication context class” and select the “X.509 Certificate”. Then, select “No” in the “Honor Force Authentication” field:

  • Scroll down and click on the Next button:

  • In the “Feedback” tab, check the option “This is an internal app that we have created” and click the Finish button.

  • Now that the app has been created, copy the Metadata URL in the “Sign On” tab to use in the next section: 

     

  • Finally, assign your user to the newly-created app. To do this, click on the "Assignments" tab, then the Assign button, and lastly, the "Assign to People" option:

  • Search for the same email used to log in to the target Talkdesk account. Select it, then click the Assign button.

  • Next, select the Save and Go Back button. 

  • Finally, choose the Done button.

The Okta configuration is now complete, and Talkdesk ID can now use it as an IdP for logins. 

 

Talkdesk: Configuring Okta as SAML SSO

To configure Okta to work as your SAML Single Sign-On provider for Talkdesk, access the Admin menu, select Security Settings, and then proceed with the following steps:

new_image_doc.png

  1. Locate the "Single sign-on provider" section [1]
  2. Select "Okta" as the designated provider [2]
  3. Insert the Metadata URL [3], as explained in the preceding section, into the designated field. 
  4. Confirm the selection by choosing Save [4].

Authorization for the specified Talkdesk account to authenticate users via Okta as the Identity Provider is now enabled.

All Articles ""
Please sign in to submit a request.