How to set up Single Sign-On with Okta

This article outlines the steps required to set up Single Sign-On [SSO] with Okta authentication.  Users can then use Okta authentication to access the Spoke Phone mobile app, desktop app and account portal.

You will need to have an account with admin access to Okta to complete this configuration.

Contents

Set up SAML in Spoke Phone

Create an application on Okta

Complete Spoke Phone SSO setup

Complete Okta user assignments

 

Create an application on Okta

  1. Open your Okta admin console in a new browser window/tab

  2. Navigate to Applications and select Create App Integration

  3. Choose SAML 2.0 and select Next
    2021-08-10_13_29_24-SSO.png

  4. Configure General settings

    • Enter an App name such as "Spoke Phone"

    • Upload the Spoke logo (Download it here)

    • Select Next

      2021-08-10_13_31_24-SSO.png

  5. Configure SAML settings
     
    • Complete the following fields:
      Single Sign On URL =  
      https://sso.spokephone.com/saml2/idpresponse

      Audience URI =  
      urn:amazon:cognito:sp:us-east-1_QElIJGlYT
    • Select EmailAddress in the Name ID format field

    • Select Email in the Application username field

      2021-08-10_13_37_07-SSO.png

    • Scroll down a little and create three Attribute Statements as follows

      • Add an attribute with name firstname, format basic, and select value user.firstName

      • Add an attribute with name lastname, format basic, and select value user.lastName

      • Add an attribute with name email, format basic, and select value user.email

        2021-08-10_13_44_53-SSO.png

    • Select Next

  6. Configure Feedback

    • Select I'm an Okta customer... optionally complete further fields and click Finish

Complete Spoke Phone SSO setup

  1. You should still be on the Okta admin page under Applications > Spoke Phone > Sign On

  2. Select View Setup Instructions

    Step_5.png

  3. Copy the entire contents from the IDP metadata field in the Optional section at the bottom

    2021-08-10_16_25_32-SSO.png
    TIP: In chrome browser, you can expand this field using the control at the bottom right to ensure you have copied the entire content.  Otherwise select in the field and hit CTRL+A, then CTRL+C to ensure you copy the entire content.
  4. Create a new text file named SpokePhoneIDP.xml, paste the clipboard contents then save the file

Set up SAML in Spoke Phone

  1. Go to your Spoke Phone account portal online and login

  2. Navigate to Other > Advanced and select the SINGLE SIGN-ON tab at the top of the Advanced page

  3. Enter in a Company Name and select Check availability

  4. Select Upload and choose the file SpokePhoneIDP.xml you saved earlier

  5. Complete the SAML Response Mapping in the Spoke Phone Account Portal as follows:
    Email =  
    email

    First Name =  
    firstname

    Last Name =  
    lastname

Complete Okta user assignments

You can now assign Okta users to the new Spoke Phone app created in Okta.

  1. Ensure the users in Okta that you wish to have access to Spoke Phone have been assigned to the new Spoke Phone Okta ap in Applications > Assignments

  2. Ensure that each user you wish to have access has a valid user setup in your Spoke Phone account with the same email address used in Okta.
TIP: You can download a list of users to a csv file and manipulate that file to upload users directly into the Spoke Account portal. 
Was this article helpful?
0 out of 0 found this helpful