To configure Single Sign-On (SSO) with Okta, you need to create a custom SAML application. Additionally, you must be an administrator in Okta and have an owner role in Knot's Customer Dashboard to set up SSO for your team.

Configuring SSO using a custom SAML app

To continue configuring your custom SAML application, do the following:

  1. Open your Okta admin console in a new tab.
  2. Go to Applications, and then select Applications.
  3. Select Create App Integration.

  1. In the "Create a new app integration" screen, select SAML 2.0 and then select Next.

  1. In the "General Settings" tab, enter an app name you'll recognize later, and then select Next.
  2. In the "Configure SAML" tab, you can specify https://dashboard.knotapi.com as the Single Sign-On URL and use it as your Audience URI (SP Entity ID). Choose EmailAddress as the name ID format.

🚧

Keep in mind that later on, you will need to modify the Single Sign-On URL and the Audience URI (SP Entity ID) according to the configuration generated when setting up the SAML/SSO in the Knot Client Dashboard.

  1. In the Feedback tab, select I'm an Okta customer adding an internal app. Select This is an internal app that we have created as the app type, and then select Finish.
  2. Select the Sign On tab, and then select View SAML setup instructions to display the IdP details.

  1. Login to the Knot Client Dashboard with an owner role and go to the Account page

  1. Click on Setup your IDP configuration.
  2. Based on the IdP details you got from the step 8 fill the following form where the Entity ID is Identity Provider Issuer, the Login URL and Logout URL is the Identity Provider Single Sign-On URL, and the X509 Certificate.

  1. Once you fill the above form and click on submit, the following configuration will be generated under the SAML/SSO section:

  1. Go back to the custom SAML application you created on Okta, click on Edit, and then update the SAML settings using the configuration generated in step 12, where the Single Sign-On is the Reply URL and the Audience URI (SP Entity ID) is the Entity ID.