Okta as IDP for Moodle

Step 1: Setup Okta as Identity Provider

    Follow the steps below to configure Okta as IdP

    miniorange img Configure Okta as IdP

    • In the miniOrange SAML 2.0 SSO plugin, navigate to Service Provider Metadata tab. Here, you can find the SP metadata such as SP Entity ID and ACS (AssertionConsumerService) URL which are required to configure the Identity Provider.
    • moodle saml upload metadata
    • Login into your Okta dashboard.
    • You will be presented with the following screen. Click on the Developer Console arrow and select
      Classic UI from the navigation bar on top in Okta window.
    • SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta SSO Admin_Dashboard
    • In the Applications tab select Applications.
    • SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - add_application
    • Click on the Create App Integration button to create new app.
    • SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - add_application
    • Select SAML 2.0 as Sign-On method and Click on Next button.
    • SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - SAML 2.0 Configure
    • In General Settings tab, enter App Name and click on Next button.
    • SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - SAML_SETTINGS
    • In Configure SAML tab, enter the required details:
    • Single Sign On
      URL
      ACS (AssertionConsumerService) URL from the Service Provider metadata tab of the Plugin
      Audience URL
      (SP Entity ID)
      SP Entity ID / Issuer from the Service Provider Metadata tab of the Plugin
      Default
      Relay State
      Relay State from the Service Provider Metadata tab of the Plugin
      Name ID
      Format
      Select E-Mail Address as a Name Id from dropdown list
      Application
      Username
      Okta username
      SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - SAML_SETTINGS
    • Configure Group Attribute Statements (Optional) as given in table and click on Next button.
    • Name Value
      fname user.firstName
      lname user.lastName
      username user.login
      email user.email
      SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - Add_Attributes
    • If you have integrated your Active Directory in Okta and want to map the AD groups, please make sure that you have added the OUs used to import groups.You will also need to map the memberOf
      attribute under the integrated directory’s configuration.

miniorange im

g Assigning Groups/People

  • Navigate to the application you created and click on the Assignments tab in Okta.
  • SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - Assign_groups
  • Click on Assign button to Assign People and Assign Groups.
  • SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - Assign_groups
  • Once you Assign the user, click on Done button.
  • SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - Assign_groups
  • Navigate to Sign On tab and Click on View Setup Instructions.
  • You will get the Okta Metadata file / SAML Login URL (Single Sign on URL), Single Logout URL, IDP Entity ID and X.509 Certificate. You will need this to configure the Service Provider.
  • SAML Single Sign-On (SSO) using Okta as Identity Provider(IdP), Okta Login - Configure setup
Hello there!

Need Help? We are right here!

support
Contact miniOrange Support
success

Thanks for your inquiry.

If you dont hear from us within 24 hours, please feel free to send a follow up email to info@xecurify.com