Overview
Currently with standard Druva 2.0 App in OKTA we are able to configure SSO for User and Admin either SP initiated or IdP Initiated
This article describes the steps to configure SP and IdP initiated SSO for Druva Cloud Platform ( DCP ) using OKTA as an IdP.
Steps :
Log in to the OKTA Admin center and click Application in the navigation bar on the left.
Click on Create App Integration and select SAML 2.0
Give a name to App as Druva Users and click on Next, under General SAML Settings enter below details.
Enter the Single Sign On URL : https://login.druva.com/api/commonlogin/samlconsume
In Entity ID : DCP-login
Default Relay state can either bebrowserrestoreordeviceactivate
Name ID format = EmailAddress
Application Username = Okta username
Under Attribute Statements :
Name = druva_auth_token
Name format = Unspecified
Value = generate the SSO token from DCP
10. Click on Next and Finish
11. Once changes are saved, go to SAML signing Certificates under Sign On Tab
12. Look for the Certificate type SHA-1 which is Scoped for your entire Org.
13. Click on Actions >> Activate.
Similarly create SAML app for Admins and enter the details
For Admin app, you can Keep relay state blank or enter adminlogin
Once both the apps are created, configure DCP with below settings.
Go to the Druva users app
Click on Sign On and then on View SAML Setup instructions
Copy the IdP URL and Certificate and paste in DCP
Save the configuration in Druva
In OKTA Assign the Apps to users and you should be able to perform IdP and SP initiated SSO for both users and Admins.