About the article
Templafy is available in Okta as an application that can be added from the Okta portal. Templafy application comes with pre-configured settings; SAML connectors are setup out-of-the-box and all supported User Claims are pre-mapped in the back-end of the application. This article describes how an organization can set up SSO on Okta utilising SAML2 protocol.
This support article is divided into the following main sections:
- Step-by-Step installation
- Obtain Metadata URL to complete the setup on Templafy's side
- Configure User Profile Mappings
- Configure Group Claim
- Templafy Hive
Prerequisites
|
Step-by-Step installation
- Log in to your Okta organization as a user with administrative privileges and navigate to the
Admin
section - In the panel locate
Applications
section - Select the
Applications
subsection - Click on
Browse App Catalog
- Use the search function and type Templafy in the search field
- Confirm your selection by clicking
Add
when Templafy appears - Edit the General settings according to your preferences and hit
Done
to confirm and add the application to your Gallery
Congratulations! You have now completed the basic setup on your side.
Obtain Metadata URL to complete the setup on Templafy's side
- In the Templafy Application, navigate to the
Sign On
tab - Locate and click on the
View Setup Instructions
- In the new tab that opens, locate Configuration Steps subsection
- Copy the Metadata URL from the Step 2
- Provide the URL to Templafy Implementation Partner to allow them to finalise the SSO configuration on Templafy's side.
Configure User Profile Mappings
- In Okta Admin portal locate
Directory
tab - Navigate to
Profile Editor
- Search for the Templafy app, then click on the name of the app
- Select
Add Attribute
- Enter the following required fields:
- Display Name: Enter a preferred attribute name.
- Variable Name: Variable names are pre-defined and case sensitive.
- Use the following values as Variable Names for the respective attributes:
title, mobilePhone, primaryPhone, streetAddress, city, state, zipCode,
preferredLanguage, department, country, customClaim1, customClaim2,
customClaim3
- Use the following values as Variable Names for the respective attributes:
- Complete the action by either clicking
Save
orSave an Add Another
, if you wish to continue adding more attributes - Once you have added all attributes you want to send to Templafy, click on
Mappings
to map them against attributes from the Okta Base User profile - In the Mappings section select
Okta User to Templafy
- Start typing the required attribute from the Okta Base User profile (or use the dropdown list) and select the attributes you want to map
- In a similar manner continue to do so until all attributes have been mapped
- To ensure claims are regularly updated select the option
Apply mapping on user create and update
- Review the mappings and confirm the setup by clicking
Save Mappings
- Now that mappings are saved, hit
Apply updates now
to pass the attributes with their respective values from the Okta Base User Profile to Templafy.
Below screenshot is an example of a complete list of User Profile mappings.
Configure Group Claim
If you wish to pass Okta groups as part of the SAML response, please follow these steps:
- In Okta, look up the Templafy App in the Applications directory
- Navigate to the
Sign On
tab of the App, then clickEdit
- Select your preferred group filter from the dropdown list
- Manually type in
.*
in order to sendall
Okta groups to Templafy - Click
Save
Templafy Hive
If you are a new customer onboarding on HIVE or an existing customer upgrading to HIVE, please note that Templafy has introduced regional data clusters for hosting the Templafy solution. These will be reflected in the SAML endpoints based on the geographical location.
To complete the configuration and use the ACS URL in Okta based on your region, follow these additional steps:
- Navigate to the
Sign On
tab of the Templafy Application - Click
Edit
- Scroll down to Advanced Sign-On Settings
- Check Upgrade to Templafy HIVE
- Enter the one of the following Assertion Consumer Service values
West Europe (small companies) https://templafyprod0.auth.templafy.com/auth/saml2/auth-services/Acs West Europe https://templafyprod1.auth.templafy.com/auth/saml2/auth-services/Acs East US https://templafyprod2.auth.templafy.com/auth/saml2/auth-services/Acs
East Australia https://templafyprod3.auth.templafy.com/auth/saml2/auth-services/Acs
Canada https://templafyprod4.auth.templafy.com/auth/saml2/auth-services/Acs
- Click
Save
Comments
0 comments
Please sign in to leave a comment.