Folio supports Single Sign On with Okta. You will need to configure both Okta as well as Folio.
Here are the instructions on how to set up Single Sign On with Okta
Set up in Okta
- Log into your Okta admin dashboard (you can get to here by logging into https://www.okta.com/ and then clicking on your avatar on the top right and selecting “Your Org”
- Click on Applications on the left bar, then select Applications
- Click Create app Integration and select SAML 2.0, then click next
- Set the name to “Folio” or something similar and click Next
- Fill in the following then click Next
Single sign on URL |
https://your-folio-instance.foliogrc.com/d/users/auth/saml/callback |
Audience URI (SP Entity ID) |
https://your-folio-instance.foliogrc.com |
Name ID Format |
Set to “EmailAddress” |
Application Username |
Set to “Email” |
- On Feedback Select the first option and then click finish.
- On the screen for the new app you’ve made scroll down to the SAML Signing Certificates section and click “View SAML setup instructions” on the right
- Copy the Identity Provider Single Sign-On URL: and Identity Provider Issuer into a notepad.
- The third item on this page (X.509) Certificate will need converting before folio can use it. Copy the Contents of the grey box (From “----BEGIN CERTIFICATE—” to “--ENDCERTIFICATE–” and paste it into the x.509 cert box on this site https://www.samltool.com/fingerprint.php
-
- Then click calculate fingerprint. and copy the formatted FinterPrint into your notepad
Set up in Folio
Login as a Super User, click on the Admin Gear Wheel and then on Sign on and Security, and then click Edit.
Tick Single Sign on through SAML
Fill in the Fields using the
Name |
Okta |
Issuer |
https://your-folio-instance.foliogrc.com |
IDP SSO Target URL |
The setting you copied from Okta ‘Identity Provider Single Sign-On URL:’ from step 7. |
Federation XML URL |
Leave this blank |
IDP Certificate SHA1 Fingerprint |
The Formatted FingerPrint you Copied from step 9 |
ID Claim/Name ID Format |
Leave this field as it is |
Step 10: Now logout and you should see the ‘Sign in using Okta’ button on the login screen. Try logging in using the button.