Before you start
In Okta, you must have either the Super Administrator or Application Administrator role to configure SAML app integrations.
In Whistleblower Software, you must have either the Administrator or System Technician role to access Settings > Security.
SAML is available on the Advanced plan only.
Before users can sign in, make sure the following are in place or login will fail: signed responses or assertions must be enabled in your identity provider, and the Name ID must be mapped to the user's email address.
Steps
Step 1: Create a new app integration in Okta
In your Okta admin panel, go to Applications and click Create App Integration.
Step 2: Select SAML 2.0
Choose SAML 2.0 and click Next.
Step 3: Name the application
Enter a name such as "Whistleblower Software" and click Next.
Step 4: Enter the ACS URL and Entity ID
Go to Settings > Security in Whistleblower Software. Enable Login with SAML. Copy the Application ACS URL (this is the Single sign-on URL in Okta) and the Application entity ID (this is the SP Entity ID in Okta).
Enter these into the corresponding fields in Okta. Then:
Set Name ID format to EmailAddress.
Set Application username to Email.
Step 5: Complete the setup in Okta
Select I'm an Okta customer adding an internal app and click Finish.
Step 6: Get the Okta metadata
Click View SAML setup instructions. Under the Optional section, copy the IDP metadata content and save it as a .xml file on your computer.
Step 7: Upload the Okta metadata file into Whistleblower Software
Go back to Settings > Security in Whistleblower Software. Under Identity provider metadata file, upload the .xml file you just saved from Okta.
Step 8: Assign users
In Okta, assign the relevant users to the Whistleblower Software application.
We’re here to support you. If you have questions reach out to us directly via the Messenger icon in the bottom right corner of your screen, or send us an email at [email protected]