Okta

The following steps describe how to configure SAML SSO in Okta.

Configure SSO in Okta

Complete the following steps in Okta to configure single sign-on for iManage users:

  1. Create a new SAML application by navigating to Admin > Add Applications > Create App Integration.

    NOTE:

    When migrating from the Identity Provider (Legacy) SAML SSO to the Service Provider (Recommended) SAML SSO configuration in iManage Control Center, we recommend that you do not modify an existing application in Okta. Creating a new application in Okta enables you to preserve your existing SSO application and roll back to it if the need arises.


    Figure: Create a new app integration dialog box

    images/download/attachments/125061223/image2021-8-3_15-10-53.png

  2. Select SAML 2.0.

  3. Select Next. The Create SAML Integration page opens.
    Figure: Create SAML Integration > General Settings page
    images/download/attachments/125061223/image2021-8-3_15-14-26.png

  4. In App name enter a name, such as iManage.

  5. Select Next to proceed to the Configure SAML page.

    Figure: Create SAML Integration > Configure SAML page

    images/download/attachments/125061223/image2021-8-3_15-17-54.png

  6. In Single sign on URL, copy and paste the SAML consumer URL from iManage Control Center.
    Figure: SAML consumer URL in iManage Control Center
    images/download/attachments/125061223/image2021-8-12_15-51-12.png

  7. In Audience URI (SP Entity ID), copy and paste the SAML service provider metadata URL from iManage Control Center.

    Figure: SAML service provider metadata URL in iManage Control Center
    images/download/attachments/125061223/image2021-8-12_15-48-28.png

  8. Select Next.

  9. On the Feedback page, select I'm an Okta customer adding an internal app.

  10. Select Finish. The Application > Sign On page appears.
    Figure: Application > Sign on page in Okta

    images/download/attachments/125061223/image2021-8-3_15-42-38.png
  11. Select Edit.

  12. In Application username format, select Custom.

  13. In the next field, enter the expression to map usernames in Okta to the User ID format in iManage. To learn more about the options available, select Expression Language Reference.
    Common examples include the following:

    • John.Doe = user.firstName + "." + user.lastName

    • JDoe = substring(user.firstName, 0, 1) + user.lastName

    Figure: Configure the Application username format in Okta
    images/download/attachments/125061223/image2021-8-3_15-49-22.png

  14. Select Save.

  15. To update the application with your new Credential Details configuration, select Update Now. When prompted, select Update to confirm the update.
    Figure: Update credential details

    images/download/attachments/125061223/image2021-8-3_16-19-23.png
  16. To configure which users in Okta are allowed to authenticate to iManage, select Assignments.
    Figure: Configure the Assignments for this Application

    images/download/attachments/125061223/image2021-8-3_16-9-26.png
  17. Select Assign > Assign to People or Assign > Assign to Groups to assign this application to users or groups respectively.

  18. Search for the users and/or groups and then select Assign.

  19. Select Save and Go Back.

  20. When you have completed assigning users and groups, select Done.

  21. To download the Federated metadata XML file, select Identity Provider metadata.
    Figure: Download Identity Provider metadata

    images/download/attachments/125061223/image2021-8-3_16-2-52.png


    The XML file opens in a new tab in your browser.

  22. To save the displayed XML as a file, right-click in your browser, and select Save As.

  23. Enter a file name and select Save.

  24. Import the Federated Metadata XML file into iManage Control Center by returning to iManage Control Center and completing the steps in Authentication & SSO.