Configuring Okta Single Sign-On Integration with SAML

This guide shows you how to configure Okta and Acunetix Premium+ for Single Sign-On.

Okta is an identity and access management platform. Its Single Sign-On (SSO) solution allows users to log into a variety of systems using one centralized process.

Single Sign-On Fields

This table lists and explains the Single Sign-On fields.

How to configure Okta with SAML

There are two parts to this procedure:

• Part 1: Add an application to Okta
• Part 2: Add users to the application on Okta

How to add an application to Okta

1. Log in to Okta.
2. From the Admin Console under the main menu, go to Applications > Applications > Create App Integration.
3. From the Create a new app integration dialog, select SAML 2.0. Then click Next.

4. On the Create SAML Integration page, enter a name in the App name field. (You can enter any name you want. For this example, we use Acunetix.)
5. Select Next.
6. Open a new tab and log in to Acunetix.
7. From the Acunetix menu, select Settings > Users & Access > SSO.  
8. Turn on the Enable SSO toggle.
9. Select Okta from the SSO Provider drop-down list.
10. Copy the SAML 2.0 Service URL. Switch to the Okta tab and paste the URL into the Single Sign-on URL field.
11. Return to the Acunetix tab and copy the Identifier URL. Switch to the Okta tab and paste the URL into the Audience URI (SP Entity ID) field.

12. In the Okta tab, add the following FirstName field in the Attribute Statements. Then select Next. The Feedback tab is displayed.

13. Click Finish.
14. From Okta's main menu, select Applications > Acunetix.

15. Select the Sign On tab and scroll down to View SAML Setup Instructions. Okta opens a new tab.
16. From the new tab, copy the URL from the Identity Provider Issuer. Then switch to the Acunetix tab and paste the URL to the IdP Identifier field.
17. In the Okta tab, copy the URL from the Identity Provider Single Sign-On URL. Then switch to the Acunetix tab and paste the URL to the SAML 2.0 Endpoint field.
18. In the Okta tab, copy the content from the X.509 Certificate field. Then switch to the Acunetix tab and paste the URL to the X.509 Certificate field.

19. In Acunetix, if you select Require encrypted assertions, do one of the following:

1. Select Generate a new certificate for me; OR
2. Select I have an existing certificate, then upload your certificate and enter the certificate password.

20. From the Acunetix SSO Exemptions drop-down, you can select specific users to exempt them from SSO. Doing this means the selected users can log in to Acunetix via password.
21. Click Save.

Acunetix informs you that the SSO configuration is saved.

How to add users to the application on Okta

1. Log in to Okta.
2. From the main menu, go to Directory > People > Add Person.
3. On the Add Person dialog, fill out the form.
4. Select Save.
5. From the main menu, go to Applications > Applications.
6. Select Acunetix from the list.
7. Select Assign > Assign to People.
8. From the Assign Acunetix to People dialog, select Assign next to the person you want to add.
9. Select Save and Go Back.
10. Click Done.

Your assigned users can now log in to Acunetix via Okta.

How to configure encrypted assertions in Okta

1. Log in to Okta.
2. From the main menu, go to Applications > Acunetix.
3. Select the General tab and scroll down to the SAML Settings section. Click Edit.
4. Click Next, then Show Advanced Settings.
5. Use the drop-down next to Assertion Encryption to select Encrypted.
6. Click Browse Files next to Encryption Certificate and upload your Acunetix certificate from Step 19 above.