Skip to main content
Version: v1.7.0

SSO with Okta

1. Prerequisite

  • An Admin account created with permission to create new application in Okta.
  • A user account with SSO Admin permissions, which can be either:
    • The provided SuperAdmin account, or
    • The admin accounts assigned under an Admin User License.
  • The configuration for sso service is needed for Enterprise Private Cloud customer in Configure SSO service.

2. Create a new application in Okta

info

The mentioned Single sign-on URL and other related values below can be extracted from metadata xml directly. Please head to Extract values from metadata xml for additional information.

  1. Navigate to ApplicationsCreate App integration (Requires Okta Admin permission to perform this action).
  2. Select SAML 2.0 for the Sign-in method and click Next.(AlphaSense SSO implementation supports Spring Security SAML 2.0)
  3. Fill in General Settings and click Next.
    1. App name: name of application (for example, AlphaSense - SSO - Demo)
    2. App logo: optional
    3. App visibility: optional
  4. Add Configure SAML and click Next.
    1. Single sign-on URL: The URL pointing to your deployed SSO service.
      1. Format: {domain name}/services/sso-ws/saml/SSO
    2. Check the box "Use this for Recipient URL and Destination URL".
    3. Audience URI: {domain name}.
    4. Name ID format: Select EmailAddress as the attribute for SSO authentication in AlphaSense, as it is configured with email addresses and each one is unique to a user.
    5. Application username: Select Email to identify users in Okta.Then click Next.
  5. Enter any optional details as needed in Feedback, then click Finish to complete the creation of your new application.

3. Download metadata file from the created application

  1. Navigate to Sign On tab → Metadata URL: Image
  2. Copy and open link to generated metadata file in new browser tab: Image
  3. Save it as a new file with your preferred name.

4. Upload the metadata file in AlphaSense

  1. Log in to your deployed AlphaSense product with a user account that has SSO Admin rights, as specified in the Prerequisite.
  2. Navigate to Profile page and enable SSO Setup.
  3. Upload the downloaded metadata file, then click Save to finish the setup.

5. Assign user to created Okta application

  1. Go to Assignments tab and then select AssignAssign to People.
  2. Find your desired users and assign them.
  3. Enter the Username. Use the email address as the username, since users are typically created with email addresses.
  4. Click “ Save and Go Back ” to complete assignment.
  5. The user should now be listed under Person.

6. Test the SSO login for assigned user

Before testing, ensure all sessions of Okta are logged out.

  1. Navigate to the login page of your deployed AlphaSense application, enter the email of the assigned user, and click Next.
  2. This will redirect you to the Okta sign in page. Provide user credentials.
  3. Upon successful login, you will be redirected to your deployed AlphaSense homepage.