Skip to main content
All CollectionsIntegrations
Setting up SAML 2.0 with Okta (Favro integration app)
Setting up SAML 2.0 with Okta (Favro integration app)
D
Written by Dino Hrgetić
Updated over a week ago

Prerequisites

In order for SAML 2.0 integration to work, the following prerequisites must be met:

  • Favro organization must be on the Enterprise plan.

  • Your organization must be able to prove domain ownership of the domain you wish to set up the SAML integration for.

Supported features

SAML 2.0 integration between Okta and Favro currently supports the following features:

  • SP-initiated SSO (determined automatically based on the email address domain during the login in Favro)

  • IdP-initiated SSO

  • Just-In-Time provisioning

Configuration steps

(Note) If your organization has already added the Favro integration to Okta and has a verified domain in Favro, you may skip directly to Step 5.

1. Install Favro integration from Okta's App Catalog.

2. Log in to your Favro account as an Administrator.


3. Navigate to Administration > Authentication Methods and click Configure on SAML authentication.

4. Enter your domain in the field and click Add domain button and complete the on-screen domain verification instructions.

5. In the Applications tab in Okta, navigate to the Favro integration you have installed earlier (Step 1) > Sign on tab > Settings > SAML 2.0 > More details.

6. Copy your Okta configuration to Favro.
1) Copy Sign On URL to SAML login url.
2) Copy Issuer to SAML logout url.
3) Download the Signing Certificate. Open the downloaded file in any text editor and copy its contents to SAML identity provider certificate. (Important: make sure to remove any trailing new lines from the downloaded file)

7. Assign users and groups to the Favro application in Okta.

8. Save the changes and test the integration.

  • Service Provider (SP) initiated login:

    1. Navigate to the Favro login page.

    2. Enter an email address belonging to the same domain you verified the ownership of.

    3. The application will automatically redirect to Okta to complete the authentication.

  • Identity Provider (IdP) initiated login:

    1. In Okta, navigate to the End User Dashboard.

    2. Click on Favro app icon.

    3. You will be automatically re-directed to Favro.

(Optional) Select in Favro if the members will be automatically added to the organization when they sign in.

(Important) Make sure to apply the changes by clicking the Save configuration at the bottom of the page in Favro.

Troubleshoot

If you are having an issue with Favro, you can contact us in the following ways:

Live Chat
You can contact us in the live chat by clicking this button in the bottom right corner of your screen while in Favro.

Email

You can also contact us via email. Our email is customersuccess@favro.com for all issues and enquiries.

Did this answer your question?