on 11-28-202107:30 PM - edited on 08-04-202311:02 AM by Nils
This page provides a step-by-step guide on configuring Okta to set up Single Sign-On (SSO) for Lansweeper Cloud.
There are two main ways to log into Lansweeper Cloud: using a login/password created in Cloud itself or using SSO. Logging in with SSO is supported for identity providers that offer SAML (Security Assertion Markup Language) or OIDC (OpenID Connect). Okta is such an identity provider or IdP.
This article explains how to do the necessary SSO setup in Okta to then complete an SSO configuration in Cloud. Note that for these Okta instructions we're using SAML as an SSO connection type.
This article explains where in Okta to gather the SSO connection details that you need to submit in the Add SSO Connection pop-up in Cloud. Make sure to read the general Cloud SSO instructions first, before reading this article, as it only explains where in Okta to find and input the details of the SSO connection.
Create a SAML app integration in Okta
In your Okta dashboard, go to the Applications menu.
Select Create App Integration, choose SAML 2.0 and select Next.
Enter a descriptive name for your app integration and continue.
Configure your Cloud SSO app
Select Download Okta Certificate.
Rename the resulting file so it ends in ".cer" instead of ".cert".
Upload the Okta certificate in the Add SSO Connection pop-up in your cloud site.
Copy the Entity ID from the Add SSO Connection pop-up in your cloud site and paste it into the Audience URI (SP Entity ID) field.
Copy the Assertion Consumer Service (ACS) URL from the Add SSO Connection pop-up in your cloud site and paste it into the Single sign on URL field.
In the Attribute Statements section, add the following two attributes:
Name: email, value: user.email
Name: email_verified, value: true
Do not skip this step. Adding these attributes is important as they are required by Cloud's underlying SSO login process.
In Okta, complete the remaining setup questions and select Finish
In the Sign On section of your newly created app, select View Setup Instructions.
Copy the Identity Provider Single Sign-On URL seen on the resulting page and paste it into the Sign in URL field in the Add SSO Connection pop-up in your cloud site.
Was this post helpful? Select Yes or No below! Did you have a similar issue and a different solution? Or did you not find the information you needed? Create a post in our Community Forum for your fellow IT Heroes! More questions? Browse our Quick Tech Solutions.