To integrate Okta as a SAML 2.0 identity provider, you must create an app in Okta to enable trust with the service provider (Conga Auth Service). After creating an app, you need external_organization_id, Metadata Location URL, and Organization ID Claim Type details.
To create an app in Okta
Log in to Okta.
In theAdmin Console, go toApplications > Applications.
ClickCreate App Integration.
SelectSAML 2.0as thesign-in method.
ClickNext.
Provide the general information for the integration and then clickNext.
In the General section, enter and select details for the following:
Enter the following Acs endpoint per your environment and check Use this for the recipient URL and destination URL checkboxes.
Select the email address option for the name ID format field.
In the Advanced Settings section, configure the following details:
Attribute Statements: Enter external_organization_idin the Name field and the unique value that is used as an external ID while configuring Okta as a SAML identity provider.
SAML Request: Click the Browse files... and upload the signature certificate file (.CER file format). To generate the signature certificate:
Use the following URL per your environment to download the service provider metadata file.