Okta’s single sign-on solution can quickly connect to third-party services, including Jotform Enterprise. To get started, you must enable Single Sign-On on your Jotform Enterprise server. You also need an Okta
account with admin permissions.
Notes
- Enabling SAML disables the integrated app’s regular sign-in page. Your users can log in to your server only through Okta.
- Backup sign-in URLs where users can sign in using their regular username and password are not supported in Jotform Enterprise. You can contact Jotform Enterprise support to turn off SAML if necessary.
The Jotform Enterprise SAML integration currently supports the following features:
- SP-initiated SSO
- IDP-initiated SSO
- Just in Time (JIT) provisioning
Configuring Okta SAML
To configure Okta SAML
- In your Okta Administrative portal, navigate to Applications in the left-hand sidebar
- Click the Browse App Catalog near the top of the resulting page.
- Search for Jotform in the search bar, then click the Jotform integration from the results.
- Click the Add Integration button to add the Jotform integration to your Okta instance.
- Enter your desired Application Label and your Organization URL. If you have a custom domain
configured with Jotform Enterprise, enter that instead.
- Click the Save button.
- Next, go to the Sign On tab and click on Edit.
- Click the Attributes (optional) button to fill in SAML Attributes. You can view the attribute list supported by the JIT provision at the end of this document. You can set the single attributes you would like to use in Jotform Enterprise.
- On the same page, click on More Details under Metadata Details to copy your SAML details.
Connecting Okta SAML on Jotform Enterprise
To connect your Okta SAML app
- Login to your Admin account on Jotform Enterprise and open Admin Console from the Profile Menu.
- Go to Settings on the left, then turn on Single Sign-On.
- Enter the Metadata Details you copied earlier from Okta as follows:
- Entity ID — Issuer.
- SSO URL — Single Sign-On URL.
- Certificate — Signing Certificate.
- SLO URL — Single Logout URL.
Once configured, you can start adding users to your SAML application and use Okta on your Jotform Enterprise server.
Notes
For the SSO prefill, you can add desired claims and manage them at the Jotform Enterprise Admin Console.
The following SAML attributes are just for JIT provisioning.
Name | Value |
---|---|
user.email | |
name | user.name |
surname | user.surname |
SP-initiated SSO
SP-initiated flows trigger when the user hits an authentication-required route.
Send Comment: