Pricing  Get Quote
 
 

How to enable SAML-based SSO for ADSelfService Plus using Okta?

If your organization uses SAML-based identity provider (IdP) applications such as Okta, you can enable one click access (SSO) to ADSelfService Plus' web console.

Once SSO is enabled, when ever a user attempts to log on to ADSelfService Plus’ web console, Okta will authenticates the request and grants access to ADSelfService Plus portal. If a user is already logged in to Okta and tries to access ADSelfService Plus, the user will be granted access automatically.

Prerequisite

If you do not find ADSelfService Plus in the list of supported applications in Okta, follow these steps to add it to the list.

Log in to your Okta account with admin credentials and navigate to ADSelfService Plus from the list of applications supported. Either download the Metadata in XML format, or get the required data by copying the Issuer URL/Entity ID, IdP Login URL, IdP Logout URL, and the X.509-certificate. 

Configuration steps in ADSelfService Plus

  1. Log in to the ADSelfService Plus web console with admin credentials.
  2. Navigate to Admin tab → Customize → Logon Settings.
  3. Check the Enable SSO checkbox to enable single sign-on for ADSelfService Plus.
  4. Click the SAML Authentication radio button to enable SAML configuration in your domain.
  5. Select Okta in the Select IdP drop-down box.
  6. okta-identity-provider-configuration

  7. There are two SAML Configuration Modes: Upload Metadata File and Manual Configuration.
    • Select Upload Metadata File if you have downloaded the metadata file.
      1. Click Browse to upload the metadata file downloaded from Okta.
    • sso-logon-settings

    • Select Manual Configuration to configure the URLs and certificates manually.
      1. Enter the Issuer URL/Entity ID URL copied from Okta.
      2. In the IdP Login URL, enter the Login URL copied from Okta.
      3. In the IdP Logout URL, enter the Logout URL copied from Okta.
      4. okta-idp-saml-authentication-manual-configuration

      5. In the space provided for X.509-Certificate, enter the public certificate key copied from Okta.
  8. Click Save.

Like this tip? Get the most out of ADSelfService Plus by checking out more tips and tricks here.

 

Request Support

Need further assistance? Fill this form, and we'll contact you rightaway.

Highlights

Password self-service

Free Active Directory users from attending lengthy help desk calls by allowing them to self-service their password resets/ account unlock tasks. Hassle-free password change for Active Directory users with ADSelfService Plus ‘Change Password’ console. 

One identity with Single sign-on

Get seamless one-click access to 100+ cloud applications. With enterprise single sign-on, users can access all their cloud applications with their Active Directory credentials. Thanks to ADSelfService Plus! 

Password/Account Expiry Notification

Intimate Active Directory users of their impending password/account expiry by mailing them these password/account expiry notifications.

Password Synchronizer

Synchronize Windows Active Directory user password/account changes across multiple systems, automatically, including Office 365, G Suite, IBM iSeries and more. 

Password Policy Enforcer

Ensure strong user passwords that resist various hacking threats with ADSelfService Plus by enforcing Active Directory users to adhere to compliant passwords via displaying password complexity requirements.

Directory Self-UpdateCorporate Search

Portal that lets Active Directory users update their latest information and a quick search facility to scout for information about peers by using search keys, like contact number, of the personality being searched.

ADSelfService Plus trusted by

A single pane of glass for complete self service password management