In this post, I will walk you through the Steps to integrate Workspace ONE / VMware Identity Manager as a trusted Identity provider for Okta.
Below is the step by step guide to integrate Workspace ONE with Okta.
-
Download the IDP metadata file and Signing certificate. Login to Admin console and navigate to Web Apps
-
Click on Settings, Settings Pop-up will open
-
Navigate to SAML Metadata. Download the Signing certificate.
-
Right click on Identity Provider (idP) metadata, Save the idp.xml file
Once you have the idp.xml and Signing certificate, Login to Okta admin page and add Workspace ONE as an Identity provider for Okta. Follow the below steps to configure Workspace ONE as IDP for Okta.
-
Login to Okta Admin page, Click on Security and Navigate to Identity Provider
- Click on Add Identity Provider drop down and Select Add SAML 2.0 id
-
Update Name as WS1-IDP (You can Enter any Name), idP Username as idPuser.subjectNameId, Match against as Okta Username (Should match the Username of Workspace ONE and Okta). Select Redirect to Okta sign-in Page. You can also Select Create a new user (JIT) if you plan to create users in vIDM as Okta’s directory.
-
Scroll down to update the idP issuer URI, idP, Single Sign-On URL and idP Signature Certificate
-
A snippet of an idP.xml file to copy Issuer URI (1) and SSO URL (2). Certificate: We have downloaded this from Workspace ONE portal earlier (Step 3)
-
Click on Add Identity Provider to save all the settings. You will be able to view the WS1-IDP under Identity Provider.
This completes the steps to Integrate Workspace ONE as IDP for Okta.
Hope this article helped you to Integrate WS1 with Okta. In the next post, I will walk you through steps to create Routing Rules for redirecting users to get authentication from Workspace ONE