Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Next »

This guid is intended to help configure single sign on/SAML 2.0  for Lucidity Software to be able to authenticate against you Okta users.

Creat a Lucidity app instance

  1. Login into your account Okta as an Admin and and navigate to Applications
  2. Create a new app
  3. Select the Platform type as Web and the Sign on method as SAML 2.0
  4. Click Create
  5. App name an log can be anything you want as long as you remember whats it for, we recommend calling you app “Lucidity Software” and using the lucidity icon provided
  6. Once you have done this click next

  7. Enter the following details provided below and leave the rest as  the default value:

    replace {site-name} with you lucidity site name

    Under the General section:


    Single sign on URL
    https://{sitename}.luciditysoftware.com.au/simplesaml/module.php/saml/sp/saml2-acs.php/{sitename}

    Audience URI (SP Entity ID)
    https://{site-name}.luciditysoftware.com.au/simplesaml/module.php/saml/sp/metadata.php/{site-name}

    Default reply state:
    https://{site-name}.luciditysoftware.com.au/home/login/initsso/application/lucidityintranet

    Under the Attribute statements:
    Add the following:
    Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/upn
    Name Format: Unspecified
    Value: user.login

    The value need to match the username naming convention used for users in lucidity if an email is used only the first part is required (eg bob.smith@somewere.com becomes bob.smith for authentication)

  8. Click Next
  9. Answer Okta’s question on how the App is going to be used.
  10. Lastly you will need to add the users to the system who will be allowed to login to the app
    (see okta’s instructions)

Providing the mettadata to Lucidity

Inorder to complet the set up Lucidity requires the IPD metadata 

  1. Navigate to the Okta Lucidity app you created above if you are not already there 
  2. Click on the Lucidit add and navigate to the Sign On section
  3. Right click on the Identity Provider metadata linke in the SAML 2.0 section and copy the link

  4. Send the link to you contact at Lucidity.

    The link should look something like:

    https://{okat-site-name}.okta.com/app/{okta-app-id}/sso/saml/metadata

  5. Once Lucidity has the IPD metadata we can finish the server set up and will notifie you one it has been completed
  • No labels