Reset Search
 

 

Article

KB43721 - How to configure Okta for SAML authentication with the PCS

« Go Back

Information

 
Last Modified Date8/27/2018 11:46 PM
Synopsis
This article provides the necessary values to configure in the Okta server as the Identity Provider with the PCS device configured as the Service Provider for successful authentication.
Problem or Goal
After configuring a SAML application on OKTA for the PCS, users are unable to login 
The error message is
No valid assertion

or
No sign-in URL found
 
Cause
This issue occurs due to missing or incorrect values when mapping the Okta attributes to the PCS SAML auth server values.
Solution
In order to allow successful authentication with Okta,  the Okta configuration needs to have the following attribute-value pair configuration:
 
Okta attributePCS Value
Single Sign On URLhttps://pcs.domain.com/dana-na/auth/saml-consumer.cgi
Recipient URLhttps://pcs.domain.com/dana-na/auth/saml-consumer.cgi?sp=1
Destination URLhttps://pcs.domain.com/dana-na/auth/saml-consumer.cgi
Audience Restrictionhttps://pcs.domain.com/okta

Items to Note

  • Recipient URL: This is the Connect Secure Entity Id that is auto-populated upon creating a SAML auth server on the PCS device.
  • Audience Restriction: This is the sign-in URL created on the PCS device for SAML authentication.  
Related Links
Attachment 1 
Created ByNick Christen

Feedback

 

Was this article helpful?


   

Feedback

Please tell us how we can make this article more useful.

Characters Remaining: 255