Ideagen Luminate logo Ideagen Luminate logo
Navigation
Need help?
Send feedback
Sign in
This page does not meet FedRAMP security standards. Please avoid entering sensitive or classified information. Learn more
Learn more
Learn more

Looking for help?

Common queries

View all

Send us feedback

Before you start

This form is for Ideagen Luminate feedback only.

Your submission will not receive a response. To request solution support, open a ticket with us.

New article Recently updated

Setting up Okta authentication

By Abi Davies
  • Last updated
⌘ K
Search this article
Print this article
Who is this article for?

IT Personnel who want to learn to configure SSO to authenticate Okta users.

Administrator permissions are required.

This guide will help you configure single sign-on (SSO) using SAML 2.0 for Lucidity Software to authenticate against your Okta users.

  1. Create a Lucidity App Instance in Okta
    1. General section
    2. Attribute statements
  2. Provide the metadata to Lucidity
  3. Further reading

1. Create a Lucidity App Instance in Okta

  1. Log in to your Okta account as an Admin and navigate to Applications.
  2. Click Create New App.

  1. For Platform, select Web.
  2. For Sign on method, choose SAML 2.0.

  1. Click Create.

  1. Set the App name (we recommend "Lucidity Software") and upload the Lucidity icon.
  2. Click Next.
  3. Enter the following details, replacing {site-name} with your Lucidity site name:

1.1. General section

  • Single sign on URL: https://{site-name}.luciditysoftware.com.au/simplesaml/module.php/saml/sp/saml2-acs.php/{site-name}
  • Audience URI (SP Entity ID): https://{site-name}.luciditysoftware.com.au/simplesaml/module.php/saml/sp/metadata.php/{site-name}
  • Default RelayState: https://{site-name}.luciditysoftware.com.au/home/login/lucidityintranet/completesso/{site-name}
Note: The Default RelayState URL determines which Lucidity module users are directed to when signing in through Okta.

1.2. Attribute statements

  • Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn
  • Name Format: Unspecified
  • Value: user.login
Note: The value must match the username convention in Lucidity. For email-based usernames, only use the part before '@' (e.g., 'bob.smith' for 'bob.smith@somewhere.com').

  1. Click Next.
  2. Answer Okta's question about how the app will be used.
  3. Add users who will be allowed to log in to the app (refer to Okta's instructions for this step).

2. Provide the metadata to Lucidity

To complete the setup, Lucidity needs the IdP metadata:

  1. Navigate to the Okta Lucidity app you created.

  1. Go to the Sign On section.

  1. Right-click on the Identity Provider metadata link in the SAML 2.0 section and copy the link.
  2. Send this link to your Lucidity contact.
Note: The link should look similar to: http://{okta-site-name}.okta.com/app/{okta-app-id}/sso/saml/metadata

Lucidity will use this IdP metadata to finish the server setup and will notify you once complete.

3. Further reading

  •  

What do you think about this article?

Your feedback helps us improve

More articles in this section

Looking for more help? Ask the Community

On this page