Okta Workforce
Overview
Spec supports a broad range of SAML and authentication providers, allowing easy integration with existing identity systems. This flexibility enables organizations to maintain centralized access control and streamline user management without compromising security or compatibility.
Okta Workforce requires a bit of additional configuration from an administrator. After receiving a Single sign-on URL and Audience URI (SP Entity ID) from a Spec representative, you can proceed with the steps outlined below.
Configuration
- Create a new enterprise application in Okta
- Navigate to Okta and sign in.
- In the Okta dashboard, select Admin in the top right corner.
- In the side navigation bar, select the Applications drop down and select Applications.
- Select Create App Integration.
- In the "Create a new app" integration modal, select the SAML 2.0 option and select the "Next" button.
- Once redirected to the Create SAML Integration page, complete the General Settings fields. An App name is required.
- Select Next. You'll be redirected to the Configure SAML page.
- Paste the "Single Sign-on URL" and the "Audience URI (SP Entity ID)" values that you received from Spec into their respective fields.
Map Okta claims to Spec attributes
Mapping the claims in your IdP to the attributes Spec uses ensures that the data from your IdP is correctly mapped.
- In the Okta dashboard, find the Attribute Statements (optional) section.
- For the Name field, enter mail.
- For the Value field, choose user.email from the drop down.
- Select the Add Another button to add another attribute.
- For the Name field, enter first Name.
- For the Value field, choose user.firstName from the drop down.
- Select the Add Another button to add another attribute.
- For the Name field, enter lastName.
- For the Value field, choose user.lastName from the drop down.
- Scroll to the bottom of the page and select the Next button to continue.
- You will be redirected to the Feedback page.
Assign selected user or group in Okta
You need to assign your users/user groups to your newly created Okta application in order to grant access to the Spec Hub. In the Okta dashboard, select the Assignments tab.
- Select the Assign drop down. You can either select Assign to people or Assign to groups.
- In the search field, enter the user or group of users that you want to assign to the enterprise application.
- Select the Assign button next to the user or group that you want to assign.
- Select the Done button to complete the assignment.
- Provide Spec with Okta application Metadata URL
Once you have completed the setup in Okta, you will be redirected to the application instances page with the Sign On tab selected.
Under Sign on methods, copy the Metadata URL. Provide this Metadata URL to your Spec representative for the final configuration.