Okta SAML Configuration

Overview

Responsive uses the secure and widely adopted industry standard Security Assertion Markup Language 2.0 (SAML 2.0) and supports SAML Authentication as an add-on feature.

Our SSO implementation integrates easily with any large identity provider that supports SAML 2.0.

 

Okta Configuration

For okta configuration, you can follow the steps below:

1. Login to okta using valid credentials.
2. Click Applications and select Applications.

 

3. Click Add Applications.

  

4. The Add Application page will be displayed. Enter Responsive in the search box.

   

5. Click Add associated with Responsive. The Add Responsive page will be displayed as shown:

  

6. Click Done. The Assignments tab will be displayed.
7. Click Assign and select Assign to People.

   

8. The Assign Responsive to People pop-up will be displayed. Click Assign.

  

9. Enter username and click Save and Go Back.

   

10. Click Done.

  

11. The assigned user will be displayed as shown. Click Sign On.

   

12. Click Edit.

  

13. Enter value for Default Relay State.

    

Note: Replace Default Relay State with the Default Relay State value in Responsive > Organization Settings > SECURITY > SSO. 

 

14. Select Email as the value for Application username format.
15. Click Save. A success message will be displayed.

   

16. Click Identity Provider metadata to download the metadata file.

Note: If the file is not downloaded, copy the file data and paste in its field.

 

Responsive Configuration

To make configurations from the Responsive application, you can follow the steps below:

1. Login to https://app.rfpio.com and click Organization Settings.

  

2. From the Organization Settings page, click SECURITY and then SSO.

Note:

• If the SAML SSO feature not displayed, contact your account manager. 
• Multiple SSO can be created for a single client instance. If interested, raise a support ticket. Once approved the team will enable it for the client.

3. Enable the toggle switch near SSO and click Submit.

 

4. Click ADD NEW. The Add new SSO section will be displayed as shown below:

  

5. Enter the name as okta.
6. Click CHOOSE FILE and upload the metadata file. Alternatively, you can paste the copied XML data.

  

7. Click VALIDATE.
8. Once validated, turn on the toggle switch associated with okta (Disabled).

 

The configuration is complete and the user can use SAML for authentication.

 

Responsive - SAML Login

The user can Login to Responsive using SAML in 3 ways.

 

Login from Okta Dashboard

From the okta dashboard, click Responsive App.

  

You will be navigated to the Responsive application page.

  

 

Login to app.rfpio.com using SAML

1. Enter the URL app.rfpio.com.

 

2. Click CONTINUE. A page as shown below will be displayed.

 

Login using instance specific URL

Contact your account manager to get instance specific URL which can be bookmarked in your browser.

 

Just -in-Time Provisioning

With Just-in-Time provisioning, you can use a SAML assertion to create regular and portal users on the fly the first time they try to log in. This eliminates the need to create user accounts in advance. For example, if you recently added an employee to your organization and have provided access to Responsive in your SAML Identity Provider, you don't need to manually create the user in Responsive. When they log in with single sign-on for the 1st time, their account is automatically created for them, eliminating the time and effort with on-boarding the account. The new user can be assigned as Admin or Manager or Team Member role by defining the role in the SAML integration. Choose None. It helps in protecting unauthorized user login through SAML.