Overview:
This is a step-by-step guide on how to set up an Okta SAML profile for a Single Sign On (SSO) integration.
Prerequisites:
This integration has some prerequisites that need to be met prior to implementation.
- An Okta developer account
- Domain Admin access in the target Vault
| Step # | Description of Action | Expected Result |
| 1 | Log into Okta as an Okta Administrator. | Log into Okta is successful. |
| 2 | Expand the Applications dropdown in the menu bar on the left-hand side of the screen and select the Applications | Applications screen is presented. |
|
3 |
Click on the Browse App Catalog button in the Application screen. |
Browse App Integration Catalog screen is presented. |
|
4 |
In the search bar type in Veeva Vault. |
Veeva Vault application is displayed as the search result. |
|
5 |
Click on the Search result with name Veeva Vault and click the + Add Integration button |
Add Veeva Vault screen is presented. |
|
6 |
Under General Settings, populate the following value: Application Label: Veeva Vault Your Veeva Vault URL: The target Vault URL Leave all checkbox as is. Click the Next button. |
Sign-On Options screen is presented. |
|
7 |
In the Sign-On Options screen, verify the following: SIGN ON METHODS
Click on the View Setup Instructions button. |
View Setup Instructions screen is presented. |
|
8 |
Read the View Setup Instructions screen and extract the following information:
|
The following information has been extracted:
SP Entity ID: ____________
Identify Provider Certificate: Downloaded
Identity Provider Login URL: ___________________________ SP-Initiated Request URL: ___________________________ SP-Initiated Request Binding: ___________________________ Signature and Digest Algorithm: ___________________________ Okta logo:Downloaded |
|
9 |
Log in to Veeva Vault as a Domain Administrator. |
Log in to Veeva Vault is successful. |
|
10 |
Navigate to Admin > Settings > SAML Profiles |
SAML Profilesscreen is presented |
|
11 |
Click on the + Create button and select Single Sign-On Profile. |
CreateSAML Profilescreen is presented. |
|
12 |
Populate the following information: Label: Okta Status: Active SAML User ID Type: Federated ID SP Entity ID: <Populate from Step 10> Identify Provider Certificate: <Select the X.509 Identify Provider Certificate from Step 10> Identify Provider Login URL: <Populate from Step 10> SP-Initiated Request URL: <Populate from Step 10> SP-Initiated Request Binding: <Populate from Step 10> Signature and Digest Algorithm: <Populate from Step 10> Use Custom Login Button: Checked Logo Image: Upload Okta Logo Button Color: White Border Color: Blue Text Color: Black Click the Save button. |
Values are saved Screenshot is attached. Vault SSO Login URL is recorded: __________________________ |
|
13 |
Navigate to Admin > Settings > Security Policies. |
Security Policies screen is presented. |
|
14 |
Click the + Create button and select + Single Sign-On. |
Create Policy Screen is presented. |
|
15 |
Populate the following: Policy Name: Okta SSO Description Single Sign-on for Okta Authentication Type: Single Sign-on SAML Profile: Okta Click the Save button.
|
Okta SSO Security Policy has been created. Screenshot is attached. |
|
16 |
Log out of Veeva Vault. |
User is logged out. |
|
17 |
Return to Okta’s Admin screen where the Sign-On Options screen is presented. Populate the following: SIGN ON METHODS
Leave any other field in its defaulted state. Click Done. |
Okta Application screen is presented. Screenshot is attached.
|
|
18 |
Log out of Okta. |
Successfully logged out. |