Xakia

When the Xakia Okta app is configured for OIDC, Xakia users will be able to use Single Sign-On (SSO) via Okta when logging into Xakia.

See further instructions below under '<a href="#h_01G8F498FMJJ69W222H8A49X5B">SP-initiated SSO Instructions</a>'.

In Xakia go to Admin --&gt; Settings --&gt; Security --&gt; Federated Identity

- In Xakia go to Admin --&gt; Settings --&gt; Security --&gt; Federated Identity

- Select Okta as the identity provider
- Note the ‘Company ID’

Browse the app catalog in Okta and search for Xakia and add the Xakia app

Fill out ‘Company ID’ with the Company Id from Xakia as noted down in the previous step

Set the ‘Application username format’ to Email

Note down the ‘Client ID’ of the Okta Application

- Browse the app catalog in Okta and search for Xakia and add the Xakia app
- Select the Sign-On tab and press 'Edit'
- Fill out ‘Company ID’ with the Company Id from Xakia as noted down in the previous step
- Set the ‘Application username format’ to Email
- Click 'Save'
- Note down the ‘Client ID’ of the Okta Application

Step 3: Complete Xakia Configuration

In Xakia under Federated Identity, fill out ‘Client Id’ with the Okta Client ID noted down in the previous step

Enter your Okta domain (e.g <a href="https://yourorg.okta.com/" rel="nofollow noopener noreferrer" target="_blank">https://yourorg.okta.com</a>) in the ‘Issuer URL’ field

- In Xakia go to Admin --&gt; Settings --&gt; Security --&gt; Federated Identity
- In Xakia under Federated Identity, fill out ‘Client Id’ with the Okta Client ID noted down in the previous step
- Enter your Okta domain (e.g <a href="https://yourorg.okta.com/" rel="nofollow noopener noreferrer" target="_blank">https://yourorg.okta.com</a>) in the ‘Issuer URL’ field
- Click 'Save'

Xakia offers two approaches for configuring users to login with SSO via Okta.

Provision and manage users directly from Okta using SCIM provisioning (Recommended)

Manually configuring users to login via Okta

1. Provision and manage users directly from Okta using SCIM provisioning (Recommended)
2. Manually configuring users to login via Okta

To provision Xakia users directly from Okta follow the SCIM configuration guide <a href="https://support.xakiatech.com/en/articles/8339660-okta-app-scim-configuration-guide">here</a>. Only Xakia main application users need to be added - please do not add Internal client users. Internal client users will be automatically provisioned by accessing the Internal Client Portal directly.

Note: Internal Client users must be assigned to the Xakia OIDC app in Okta to be automatically provisioned.

Toggle on ‘Enable User Provisioning from Xakia’

- In Xakia go to Admin --&gt; Settings --&gt; Security --&gt; Federated Identity
- Toggle on ‘Enable User Provisioning from Xakia’
- Go to the Users tab and add/edit a user
- Set Okta as their Identity Provider

Go to <a href="https://app.xakiatech.com/" rel="nofollow noopener noreferrer" target="_blank">https://app.xakiatech.com/</a>

- Go to <a href="https://app.xakiatech.com/" rel="nofollow noopener noreferrer" target="_blank">https://app.xakiatech.com/</a>
- Enter your email and click Next

You can set up Single Sign On (SSO) by following the instructions in this <a href="https://support.xakiatech.com/en/articles/8339666-microsoft-entra-formerly-known-as-azure-active-directory-federated-identity-and-single-sign-on-sso">article.</a>

Supported features

Step-by-step configuration instructions

SP-initiated SSO Instructions: