Labels

Configuring Simplesaml with Drupal 8 using OKTA - Part 2

Once you have created the custom application under OKTA portal by following the article 'CONFIGURING SIMPLESAML WITH DRUPAL 8 USING OKTA - PART 1'.  Follow the below steps to configure your simplesaml instance with OKTA.
  • After creating application, goto Admin dashboard and click on 'Application'.
  • Select the newly created application from the active list.
  • Goto 'Sign On' tab.
  • Click on 'View Setup Instructions', to get the required details to configure simplesaml instance with OKTA SSO.
  • Copy the XML under 'Provide the following IDP metadata to your SP provider.'
  • Goto Simplesaml instance and click on the 'Federation' tab. Under 'Federation' tab, click the link 'XML to SimpleSAMLphp metadata converter'.
  • Paste the copied XML metadata in the Metadata parser field and click 'Parse'.
  • You will get a metadata array that needs to be placed under metadata configuration of  Simplesaml instance.
  • Copy the generated metadata array and paste it under <SimpleSaml-Instance-Folder>/metadata/saml20-idp-remote.php
  • Goto 'authsources.php' under 'config' folder and change the following attributes 
    • entityID =>{value of 'Audience Restriction' under SAML settings of General Tab}.
    • idp => {value of 'Identity Provider Issuer' under View Setup Instructions page(Refer above or check under Sign On tab)}
    • The above needs to be updated under either 'default-sp' or new service provider.
  • Last but not least, assign the newly created application to an user, that is used for authentication.
  • Goto, 'Application' menu under Admin as below
  • Click on Assign Applications and select the applications to be assigned to the specific user as below
  • Click 'Next' and simply click 'Confirm Assignments' in the next page.
  • After completion of assignment, in the user dashboard page assigned application will be listed as below.
  • Now goto your Simplesaml instance, under 'Authentication' tab, click the 'Test configured authentication sources'.
  • Under 'Test authentication sources' page, click the configured authentication source. In this case, it is 'default-sp'.
  • On successful authentication, you may see the similar information as below

Kindly Subsribe to Things to know -Mr Ko & Acquia Pantheon Drupal Blog.
To get latest updates and solutions for the errors you facing.
Labels: