Okta IdP Integration

This article will guide you through the steps for integrating Okta as an Identity Provider using SAML.

Supported Features

  • IDP Initiated SSO
  • SP Initiated SSO

Okta Application







To integrate Okta as an IdP in Axis Security:

  1. Create an Okta integration in Axis Security. 
  2. Configure the Axis Security application in Okta. 
  3. Assign people or groups to Axis Security in Okta.
  4. Finalize the integration in Axis Security. 

Step 1: Creating an Okta IdP integration in Axis Security

  1. In the Axis Management Console, go to Settings -> Identity Providers -> Add Identity Provider.
  2. Select Okta.
  1. Enter a Name for the IdP.

📘

Note

If you do not see ACS URL and Entity ID on your Okta IdP, please reach out to CSM or Axis Support: [email protected] to enable the latest Okta Application for your tenant.

Service Provider Metadata

Copy both the Entity ID and ACS URL and paste it into a text editor. You will use it to configure the HPE Aruba Networking SSE application in Okta.


Step 2: Configuring the Axis Security Application in Okta

  1. In your Okta console, navigate to ApplicationsApplications
  2. Select the HPE Aruba Networking SSE application.
  1. Click Add Integration.
  1. Copy and paste the ACS URL and Entity ID from step 1 and click Done
  1. Select Sign On and select Edit
  1. Edit the following value for Group attribute and click Save.
  1. Goto Applications Sign On and scroll to SAML Signing Certificate and select Actions download the Signing Certificate.

Step 3: Assigning people or groups to Axis Security in Okta

  1. In the Okta admin portal, click Assignments.
  2. Click the Assign drop-down menu and select Assign to people or Assign to groups
  3. Click Assign next to the people and groups you wish to assign to Axis.

Step 4: Finalizing the integration in Axis Security

Return to the Okta IdP integration form in the SSE Administrative portal.

SAML Integration

  1. Goto Applications -> Sign On and scroll down and select more details
  2. Copy and Paste the Single sign-on URL to the Axis Security application in Okta.
  3. Upload the IdP signing certificate obtained in View Setup Instructions in Step 2: Configuring the Axis Security application in Okta.
  4. Click Ok.

📘

Note:

To commit your changes, navigate to the top-right menu, click Apply Changes, then select Commit Changes.

Viewing certificate expiration information

The Identity Providers table includes a certificate expiry indication:
From 30 days prior to certificate expiry and until expiration, indicators alert the administrator as to the number of days until expiry or following it.

This allows the administrator to proactively take action and upload new certificates before they expire and prevent possible service downtimes.