SSO with Okta SAML

The Credo AI application supports OIDC providers out of the box for Single Sign On, however a SAML provider can be used with the optional dex bundled with the installer.

The below instructions show how to set up an Okta SAML provider that can be used with dex for Credo AI SSO.

Okta Application

Edit the application SAML integration and supply an App Name

app

Enter the Credo AI application hostname for the Single sign-on URL with the /dex/callback/saml URL path added (eg https://mycredo.example.com/dex/callback/saml)

Enter the Credo AI application hostname for the Audience URI with the /dex URL path added (eg https://mycredo.example.com/dex)

app

Set group attributes as so:

app

Configure Credo AI SSO

Enable Dex SAML

image trim needed

app

SAML Provider Details

Use the SAML 2.0 Sign-On URL from Okta

app

for the SSO URL in kots Credo AI.

note

The SSO Callback URL is filled in for you.

image trim needed

app

Download the Signing Certificate from Okta

app

and upload into the CA Certificate in kots Credo AI

image trim needed

app

Okta Application​

Configure Credo AI SSO​

Enable Dex SAML​

SAML Provider Details​

Okta Application

Configure Credo AI SSO

Enable Dex SAML

SAML Provider Details