ISSUER URL (ENTITY ID) - SP or idP?

Hi,
I am new to Okta. I am testing against a portal so I can SSO to that.
Portal has provided me with the following info:

SERVICE PROVIDER SETTINGS:
CONSUMER URL
ENTITY ID

And asking me the following questions:

IDENTITY PROVIDER SETTINGS
ISSUER URL (ENTITY ID)
ENDPOINT URL (SSO)
CERTIFICATE FINGERPRINT (SHA256)

My question is what kind of application I should create in Okta and how do I get this info so I can test this portal SSO?

If you set up a SAML app in Okta and provide the ACS URL and Entity ID (https://developer.okta.com/docs/guides/saml-application-setup/configure-saml-in-okta/) you will then have a metadata XML link on signon tab to download the IdP parameters you mention (https://developer.okta.com/docs/guides/saml-application-setup/config-saml-in-app/)

image

My screen is different than yours. Also, next screen is different as well. I am sure i am in the wrong section.

@Govner - Any help please?

See this thread to compare the different Okta tenant types:

https://devforum.okta.com/t/developer-vs-preview-accounts/4597

Hi @Govner,
I have followed the link and signed up. It took me through the same registration and now i have 2 different OKTA dev accounts:

  1. https://dev-1xxxxx.okta.com/

  2. https://dev-2xxxxx.okta.com/

But I did not get any dev-yyyyy-admin.oktapreview.com per the thread you had shared. Any assistance from you would be highly appreciated. look forward to getting your response.

Hi @VirtuallyTesting

To change the admin panel display template, please hover on “Developer Console” located in the top left corner of the screen and switch to “Classic UI”. This will bring the correct interface.

Once this is done, please navigate to Admin >> Applications >> Add Application >> Create New App and you should be able to configure SAML.

1 Like

Hi @dragos,
Thank you for your response. I have gone to this screen. I need some help to choose if i should be selecting which app should be selecting to get this following info:

  1. ENTITY PROVIDER SETTINGS
  2. ISSUER URL (ENTITY ID)
  3. ENDPOINT URL (SSO)
  4. CERTIFICATE FINGERPRINT (SHA256)

Hi @VirtuallyTesting

This are SAML values. Once you created the app in Okta, under Sign On tab, please click on View Setup Instructions and Identity Provider metadata.

Based on the naming, the values should be the following:

  • Entity provider Settings: The page URL from Identity Provider metadata
  • Issuer URL: On View Setup Instructions page, the option Identity Provider Issuer contains the URL
  • Endpoint URL (SSO): On View Setup Instructions page, the option Identity Provider Single Sign-On URL contains the URL
  • Certificate Fingerprint: On View Setup Instructions page, the option X.509 Certificate contains the value for the certificate (you can also download it if your app requires it to be uploaded instead of pasted)