Skip to main content

Okta

SSO Configuration with Okta for Chaos Genius

To configure Single Sign-On (SSO) using Okta, follow these steps:

Step 1: Access the Settings Page

  1. Navigate to the Settings page.
  2. Under the SSO Configuration tab, select your Identity Provider. In this case, choose OktaSelect IdP in CG

Step 2: Add Chaos Genius as an Application in Okta

  1. Go to the Applications section in Okta.
  2. Click on the Create App Integration button on the Applications page.
  3. Select SAML 2.0 as the sign-in method.
  4. Enter Chaos Genius as the application name or modify it as per your requirements, then click NextSelect Sign In Method in Okta Application General Settings

Step 3: Configure SSO Settings

  1. In the Single sign-on URL field, enter: https://temp-cloud-monitoring-user-pool.auth.us-west-2.amazoncognito.com/saml2/idpresponse
  2. In the Audience URI (SP Entity ID) field, enter urn:amazon:cognito:sp:us-west-2_qloEmwm69
  3. Set the Application username to Email.
  4. Add the following attribute statemtents:
    1. email to user.email
    2. firstName to user.firstName
    3. lastName to user.lastName
  5. Then click Next.
  6. Click on FinishSAML Settings Attribute Mapping

Step 4: Retrieve Metadata and Signing Certificate

  1. You will be redirected to the Apps Sign-On page. Copy the metadata URL displayed on this page.
  2. Open this URL in a new tab, right-click on the page, and select Save As to download it as an XML file.
  3. On the same Sign-On page, under the metadata URL, click on More Details to download the signing certificate. Metadata url location Download metdata xml. Download Okta cert

Step 5: Upload Files to Chaos Genius

  1. Now that you have both the Metadata and Signing Certificate files, provide these files to Chaos Genius.
  2. Upload the downloaded files into the SSO Configuration section of Chaos Genius settings and click on Enable SSO.Configure SSO in CG