Overview
This article provides step-by-step guidance on setting up Single Sign-On (SSO) between Liongard and Okta, ensuring a secure and streamlined login process for users.
Prerequisites
Administrative access to Okta and Liongard.
An understanding of SAML 2.0 or OIDC principles, depending on the integration type.
Configuration Steps
Step 1: Create and Configure Your Okta Application
Log into your Okta Admin Dashboard and create a new app integration using OIDC for SSO and selecting Web Application.
Step 2: Set the Correct Assertion and Signature Settings in Okta
Assertion Signature: Set this to Signed within the SAML settings of your Okta app to verify the origin of the assertion.
Signature Algorithm: Use SHA256 for securing data integrity.
Example:
โ
Double-check these settings if you're experiencing an "Internal Server Error" when attempting to authenticate via SSO.
Step 3: Configure Liongard in Your SSO Platform
Navigate to Username > Company Settings > SSO Setup in Liongard.
Use the Metadata URL, XML, or IdP Data provided by Okta to configure SSO settings in Liongard.
Step 4: Test and Enforce SSO
Perform a login test to ensure configurations are correct.
Optionally enforce SSO for all users, with the ability to exclude certain admin accounts during testing phases.
Troubleshooting Tips
Ensure usernames in both Okta and Liongard match exactly.
Verify the correct URLs and settings are used in Okta and Liongard.
Assign the app to appropriate users or groups in Okta.
For detailed instructions on setting up SSO within Liongard, refer to the official documentation: Liongard SSO Setup Guide.