The following is required:

  • An active Okta subscription

  • An Enterprise Stormboard single sign-on enabled subscription

Why integrate SSO?

In this tutorial, you will learn how to integrate Stormboard with Okta. Integrating Stormboard with Okta provides you with the following benefits:

  • You can control in Okta who has access to Stormboard.

  • You can enable your users to be automatically signed-in to Stormboard (Single Sign-On) with their Okta accounts.

  • You can manage your accounts in one central location within Okta.

Supported by Stormboard

The Okta/Stormboard SAML integration currently supports the following features:

  • IdP-initiated SSO

  • SP-initiated SSO

  • JIT (Just In Time) Provisioning

For more information on the listed features, visit the Okta Glossary.

NOTE: This setup might fail without parameter values that are customized for your organization. Please use the Okta Administrator Dashboard to add an application and view the values that are specific for your organization.

Steps to configure Okta SSO

We recommend having two browser tabs open, one for Stormboard's configuration website, and another for Okta's configuration website.

In the Stormboard tab:

  1. Log into Stormboard as a Team Administrator in one browser tab.

  2. From the menu icon on the top left, select My Account.

    1. Select your team under My Teams

    2. Scroll down to the Authentication section and select Okta:

3. This will open the Configure Okta SSO settings window:

  1. Reply URL (ACS): Make a copy of this value (you will use it in the Okta tab).

  2. SAML 2.0 Endpoint:

    1. Copy and paste this value from the Okta Admin Dashboard.

  3. Identity Provider Issuer:

    1. Copy and paste this value from the Okta Admin Dashboard.

  4. Public Certificate:

    1. Copy and paste this value from the Okta Admin Dashboard.

  5. Enabled: Select Yes to enable SSO.

  6. Click Save.

In the Okta tab:

  1. Log into Okta as an administrator.

  2. Select the Sign On tab for the Stormboard SAML app:

3. Click Edit
a. Enter your Reply URL (ACS) from the Stormboard tab.

b. Click Save

4. Done!

Test your connection on Stormboard

  1. Go to https://[your-subdomain].stormboard.com/

  2. Click Continue

3. Stormboard uses just-in-time provisioning if the user does not have an account one will be created

Notes

The following SAML attributes are supported:

Name

Value

FirstName

user.firstName

LastName

user.lastName

Email

user.userName

Related Articles:

Did this answer your question?