Okta IdP Integration

This article will guide you through the steps for integrating Okta as an Identity Provider using SAML.

Supported Features

  • IDP Initiated SSO
  • SP Initiated SSO

Okta Application







To integrate Okta as an IdP in Axis Security:

  1. Create an Okta integration in Axis Security. 
  2. Configure the Axis Security application in Okta. 
  3. Assign people or groups to Axis Security in Okta.
  4. Finalize the integration in Axis Security. 

Step 1: Creating an Okta IdP integration in Axis Security

  1. In the Axis Management Console, go to Settings -> Identity Providers -> Add Identity Provider.
  2. Select Okta.
  1. Enter a Name for the IdP.

Service Provider Metadata

Copy both the Entity ID and ACS URLand paste it into a text editor. You will use it to configure the HPE Aruba Networking SSE application in Okta.


Step 2: Configuring the Axis Security Application in Okta

  1. In your Okta console, navigate to ApplicationsApplications
  2. Select the HPE Aruba Networking SSE application.
  1. Click Add Integration.
  1. Copy and paste the ACS URL and Entity ID from step 1 and click Done
  1. Select Sign On and select Edit
  1. Edit the following value for Group attribute and click Save.
  1. Expand Hide Details and Copy the Single Sign-On URL and download the Signing Certificate.

Step 3: Assigning people or groups to Axis Security in Okta

  1. In the Okta admin portal, click Assignments.
  2. Click the Assign drop-down menu and select Assign to people or Assign to groups
  3. Click Assign next to the people and groups you wish to assign to Axis.

Step 4: Finalizing the integration in Axis Security

Return to the Okta IdP integration form.

SAML Integration

  1. Paste the Single sign-on URL obtained in View Setup Instructions in Step 2: Configuring the Axis Security application in Okta.
  2. Upload the IdP signing certificate obtained in View Setup Instructions in Step 2: Configuring the Axis Security application in Okta.
  3. Click Ok.

📘

Note:

To commit your changes, navigate to the top-right menu, click Apply Changes, then select Commit Changes.

Viewing certificate expiration information

The Identity Providers table includes a certificate expiry indication:
From 30 days prior to certificate expiry and until expiration, indicators alert the administrator as to the number of days until expiry or following it.

This allows the administrator to proactively take action and upload new certificates before they expire and prevent possible service downtimes.


Did this page help you?