Versions Compared

Old Version 3

changes.mady.by.user Nial Muecke (Unlicensed)

Saved on

compared with

New Version 4

changes.mady.by.user Cale O'Bryan

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

This guide is intended to help configure single sign on / SAML 2.0  for Lucidity Software to be able to authenticate against you Okta users.

Table of Contents

...

Create a Lucidity app instance

  1. Login into your account Okta as an Admin and and navigate to Applications
  2. Create a new app
  3. Select the Platform type as Web and the Sign on method as SAML 2.0
  4. Click Create
  5. App name an log and logo can be anything you want as long as you remember whats it for, we recommend calling you your app “Lucidity Software” and using the lucidity Lucidity icon provided:
  6. Once you have done this click nextNext

  7. Enter the following details provided below and leave the rest as  the default value:

    Info

    replace Replace {site-name} with you your lucidity site name

    Under the General section:


    Single sign on URL
    https://{sitenamesite-name}.luciditysoftware.com.au/simplesaml/module.php/saml/sp/saml2-acs.php/{site-name}

    Audience URI (SP Entity ID)
    https://{site-name}.luciditysoftware.com.au/simplesaml/module.php/saml/sp/metadata.php/{site-name}

    Default reply state:
    https://{site-name}.luciditysoftware.com.au/home/login/lucidityintranet/completesso/{site-name}

    Info

    This url URL will determin determine the Lucidity module that users are directed to when the they sign in to Lucidity when accessing Lucidity from with in through Okta


    Under the Attribute statements:
    Add the following:
    Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn
    Name Format: Unspecified
    Value: user.login

    Info

    The value need needs to match the username naming convention used for users in lucidity if Lucidity. If an email is used only the first part is required (eg bob.smith@somewere.com becomes bob.smith for authentication)

  8. Click Next
  9. Answer Okta’s question on how the App is going to be used.
  10. Lastly you will need to add the users to the system who will be allowed to login to the app
    (see okta’s Okta’s instructions)

Providing the metadata to Lucidity

...

  1. Navigate to the Okta Lucidity app you created above if you are not already there 
  2. Click on the Lucidity add app and navigate to the Sign On section
  3. Right click on the Identity Provider metadata linke link in the SAML 2.0 section and copy the link

  4. Send the link to you your contact at Lucidity.

    Info

    The link should look something like:

    https://{okat-site-name}.okta.com/app/{okta-app-id}/sso/saml/metadata


  5. Once Lucidity has the IdP metadata we can finish the server set up and will notify you one it has been completedonce complete