Provide ZPC Service Provider (SP) Metadata to your Identity Provider (IdP)

Export the SP Metadata to provide to your IdP.

Open

Adding ZPC as a Service Provider (SP) in OKTA using URL to the hosted metadata.xml file:

1. Open the ZPC SP Metadata file you exported in the previous step to get the information required for configuring the required SAML settings in OKTA

   Open

   

1. Fill in the Single sign-on URL and Audience URI (SP Entity ID) fields in OKTA by searching your ZPC SP Metadata file for the values in red below:

   1. Copy the entityID value from the ZPC SP metadata to the Single sign-on URL field in OKTA.

      In this example, the value is https://stack8-demo.smacs.stack8.com:443/saml/SSO

   2. Copy the </md:NameIDFormat><md:AssertionConsumerService Binding="urn:oasis:names:tc:SAML:2.0:bindings:HTTP-POST" Location= value from the ZPC SP metadata to the Audience URI (SP Entity ID) field in OKTA.

      In this example, the value is https://stack8-demo.smacs.stack8.com:443/saml/metadata

Configure Name Identifier (NameID)

1. Set Name ID format to “Unspecfied”

2. Set the Application username to “sAMAccountName”

3. Click Next and then Finish.

Provide Users Access to the ZPC Application

Go to the Assignments tab of your newly created application and click the Assign dropdown to select people or groups to assign.

Download OKTA IDP Metadata

Click on “View Setup Instructions” of the ZPC Application you created for OKTA.

1. Navigate to the bottom of the page and copy-paste the contents of the box containing your IDP metadata to a text file. You will upload this file to ZPC to complete your SSO setup.

Go back into ZPC and complete the SAML SSO Configuration

1. Import your IDP metadata

2. Enable SSO

3. Logout from ZPC

4. Go to the ZPC URL & click the teal login button to authenticate using SAML SSO

5. For any login issues with SSO, please reach out to ZIRO Support.