New Feature – Okta SAML SSO Integration

Aharon Twizer
Okta
saml
SSO

We’re excited to announce a new feature that will allow you to use third party identity provides via SAML authentication. This feature will make it easy to manage your Spotinst accounts and works with the most popular identity providers. Let’s walk through how this integration works with Okta. We borrowed the following instructions from the Okta help site to help you get started.

Configuring Okta with SAML 2.0

    1. Login to your Spotinst account as an administrator.
    2. On the menu on the left side select “settings”.
    3. Click on the “Security” tab on the top and then select “Identity Providers”
      Okta settings
    4. Make a copy of the Relay State value.
    5. Go your your Okta dashboard and add the ‘Spotinst’ app to your account:
      monosnap-2016-12-25-10-38-18
    6. In Okta, go to the admin panel and edit the new ‘Spotinst’ app you just added.
      There, select the Sign On tab, then click Edit.

      • Enter the Relay State value you copied earlier into the Default Relay State field.
      • Click Save.
        okta2
      • Download the metadata document by clicking on ‘Identity Provider metadata‘ link:

      okta-metadata-download

    7. Go back to the Spotinst console, click BROWSE and upload the metadata.xml file you just downloaded.
    8. Click SUBMIT.
    9. Done! Login back to Spotinst via your Okta account!

Notes: IDP-initiated flows, SP-initiated flows, and Just In Time (JIT) provisioning are all supported.

For SP-initiated Flows:

  1. Go to https://console.spotinst.com/#/auth/signIn.
  2. Type your email address and click outside the form.
  3. Click SIGN IN WITH SSO:
    okta3

We hope you enjoyed this new integration with Spotinst.

-Spotinst Team