Preparation

To use Okta you must have:

• Okta administrator account.

Raketa provides you:

• Single sign on URL in the following format: https://raketa.travel/sso/acs?clientId=RAKETA_CLIENT_ID, где RAKETA_CLIENT_ID - client id in Raketa.
  
• Audience URI (SP Entity ID) in the following format: https://raketa.travel/ - service provider object identifier.

After all the necessary settings you should provide to Raketa:

• X.509 Certificate - auto-generated certificate file.
  
• Identity Provider Issuer - Okta identifier.
  
• Identity Provider Single Sign-On URL - your authorization web-page URL, which we will use to redirect users to your authentication system.
  

Application configuration

1. Log in to the Okta website: https://login.okta.com/.
   
   
2. Select application setting from the main menu "Application" [1] → "Applications" [2].
   
   
   
3. Click the "Add Application" button [3] to add a new application.
   
   
   
4. Click the "Create Application" button [4] on the next screen.
   
   
   
5. In the pop-up window select a platform - "Web" [5] and a sing on method - "SAML 2.0" [6].
   
   
   
6. In the first step of integration, specify the application name [7] and click the "Next" button [8].
   
   
   
7. In the second step, fill out the form with the data provided by Raketa. Specify:
   1. Single sign on URL [9]: https://raketa.travel/sso/acs?clientId=RAKETA_CLIENT_ID
   2. Audience URI (SP Entity ID) [10]: https://raketa.travel/
   3. Name ID format [11]: EmailAddress
   4. Application username [12]: Email.
      Then click the "Next" button [13].
      
      
      
8. In the third step, click the "Finish" button [14] to complete the integration.
   
   
   
9. Click the "View Setup Instructions" button [15] to review the received settings.
   
   
   
10. Provide automatically generated data to Raketa:
    1. Identity Provider Single Sign-On URL [16].
    2. Identity Provider Issuer [17].
       
    3. X.509 Certificate - click the "Download certificate" button [18] to download it.