SAML SSO can be enabled by Admins by selecting the default Single Sign-on provider for their account as "SAML".
Talkdesk supports the integration with OKTA as a SAML SSO provider. This document details the configuration steps required to configure the communication between these two services.
Okta
- In the left menu, expand Applications. Click on Applications, and select the Create App Integration button:
- Select “SAML 2.0” and click Next:
- In “General Settings”, give a name to your application, and then click on the Next button:
- In “Configure SAML”, add the following URL in both the “Single Sign-On URL” and “Audience URI (SP Entity ID)” fields: https://<account name>.talkdeskid.com/login/saml/okta
- On the “Name ID” format field, select the “EmailAddress” option from the dropdown menu:
- Click on the Show Advanced Settings link and then select the “Unsigned” option on the “Response” field:
- Scroll down to the “Authentication context class” and select the “X.509 Certificate”. Then, select “No” in the “Honor Force Authentication” field:
- Scroll down and click on the Next button:
- In the “Feedback” tab, check the option “This is an internal app that we have created” and click the Finish button.
- Now that the app has been created, copy the Metadata URL in the “Sign On” tab to use in the next section:
- Finally, assign your user to the newly-created app. To do this, click on the "Assignments" tab, then the Assign button, and lastly, the "Assign to People" option:
- Search for the same email used to log in to the target Talkdesk account. Select it, then click the Assign button.
- Next, select the Save and Go Back button.
- Finally, choose the Done button.
The Okta configuration is now complete, and Talkdesk ID can now use it as an IdP for logins.
Talkdesk: Configuring Okta as SAML SSO
To configure Okta to work as your SAML Single Sign-On provider for Talkdesk, access the Admin menu, select Security Settings, and then proceed with the following steps:
- Locate the "Single sign-on provider" section [1].
- Select "Okta" as the designated provider [2].
- Insert the Metadata URL [3], as explained in the preceding section, into the designated field.
- Confirm the selection by choosing Save [4].
Authorization for the specified Talkdesk account to authenticate users via Okta as the Identity Provider is now enabled.