SSOOkta

Okta SSO Setup Guide

Configure SAML 2.0 Single Sign-On with Okta

⏱️ 10 min readLast updated: December 2025

1Create a new application in Okta

  1. Log in to your Okta Admin Console
  2. Navigate to ApplicationsApplications
  3. Click Create App Integration
  4. Select SAML 2.0 and click Next
  5. Enter "ViksaAI" as the App name and click Next

2Configure SAML Settings

Enter the following values in the SAML Settings section:

Single sign-on URL
https://api.viksaai.com/auth/auth/sso/saml/callback
Audience URI (SP Entity ID)
https://viksaai.com/saml/metadata
Name ID format
EmailAddress
Application username
Email

3Configure Attribute Statements

Add the following attribute mappings for user provisioning:

NameValue
email
user.email
first_name
user.firstName
last_name
user.lastName
groups
(Groups attribute)

Click Next and then Finish to create the application.

4Copy Okta SSO Settings

After creating the application, go to the Sign On tab and copy these values:

Important

Click "View SAML setup instructions" or go to the "Sign On" tab → "View IdP metadata" to find these values.

  • Identity Provider Single Sign-On URL - This is your IdP SSO URL
  • Identity Provider Issuer - This is your IdP Entity ID/Issuer
  • X.509 Certificate - Download and copy the certificate contents

5Configure ViksaAI

  1. Go to Settings → SSO in your ViksaAI dashboard
  2. Select SAML 2.0 as the protocol
  3. Select Okta as the provider
  4. Enter your email domain (e.g., yourcompany.com)
  5. Paste the IdP Entity ID/Issuer from Okta
  6. Paste the IdP SSO URL from Okta
  7. Paste the X.509 Certificate from Okta
  8. Click Save Configuration

6Verify Your Domain

Navigate to the Domain Verification tab and follow the instructions to add a DNS TXT record.

DNS Record Format

Type: TXT
Name: _viksaai-verification
Value: viksaai-verify=<your-token>

DNS changes may take up to 48 hours to propagate.

7Test and Enable SSO

  1. Click Test Connection to validate your configuration
  2. Assign users to the ViksaAI application in Okta
  3. Once verified, click Enable SSO
  4. Users can now sign in using "Sign in with SSO" on the login page

🎉 That's it! Your users can now sign in to ViksaAI using their Okta credentials.

Back to SSO GuidesAzure AD Guide