Setup SSO with Okta

Follow these steps in your Okta account:

1. Create a new App Integration in Okta and choose the SAML2 option

2. Give it a name, and when asked for Single sign-on URL paste Birdie's Service Provider ACS, when asked for theAudience URI (SP Entity ID) paste Birdie's Service Provider EntityID, as illustrated in the following screenshot. Let everything else as-is with Okta defaults…

3. Now your app is created on Okta side, go back Enable SAML2 into your Birdie settings, that will open a form where you must enter a few informations: at first you can label this connection as you wish, call it "Okta" for example, and add your domain name (separated with commas if you get some). You will then need to fill-in 3 fields in Birdie with infos coming from your Okta app: 1. the field Entity ID (called "Issuer" in Okta) 2. the field Single SignOn URL (called "Sign on URL" in Okta) 3. the field X.509 certificate: to do this, download your Okta Signin Certificate (do not click on Copy, but download the file), open this file in a text editor, and copy the whole text content of your certificate into Birdie's X.509 certificate field. Once you get those 3 informations in Birdie, click the Enable SAML button.

4. If there was no error, you should be able to connect to Birdie with your SSO.