You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 4 Next »

Enterprise Tester and Okta

Enterprise Tester is a SAML 2.0 enabled application within OKTA.

Okta is an enterprise-grade, identity management service, built for the cloud, but compatible with many on-premises applications. With Okta, IT can manage any employee's access to any application or device. Okta runs in the cloud, on a secure, reliable, extensively audited platform, which integrates deeply with on-premises applications, directories, and identity management systems.

https://www.okta.com/

 

Configuring Okta

1) In Okta, create Enterprise Tester integration using SAML 2.0.


 

2) SAML General Settings need to contain:

Single Sign URL is your Enterprise Tester instance e.g https://enterprisetester/authentication/SAML2.rails

Audience URI A9CC4713-F3D5-4321-9C19-14A58E117364

 

Record IDP information in "View Setup Instructions"


 

 

 

Configuring Enterprise Tester to use Okta

Add the following keys to the appSettings section in the Enterprise Tester web.config file.

 


Values in steps 2-4 will be available after completing the Okta configuration above.

 Enable SAML Support

<add key="SAML.Enabled" value="true" />

IDP Issuer

<add key="SAML.Issuer"value="<IDP Issuer>"/>

IDP SSO URL

<add key="SAML.IDP"value="<IDP SSO URL>"/>

X.509 Certificate

<add key="SAML.Certificate"value="<X.509 Certificate>"/>

 

 



CLR Security Update

  1. Download CLR security update
    http://clrsecurity.codeplex.com/releases/view/47764

  2. Extract Security.Cryptography.dll assembly

  3. Add Security.Cryptography.dll to GAC

     

    gacutil.exe /i Security.Cryptography.dll

  4. View Security.Cryptography.dll assembly

     

    gacutil.exe /l Security.Cryptography

  5. Update machine.config in C:\Windows\Microsoft.NET\Framework\v4.0.30319\Config and C:\Windows\Microsoft.NET\Framework64\v4.0.30319\Config. Insert the following code block after <system.web> section in <configuration>

     

    <mscorlib>
      <cryptographySettings>
        <cryptoNameMapping>
          <cryptoClasses>
            <cryptoClass RSASHA256SignatureDescription="Security.Cryptography.RSAPKCS1SHA256SignatureDescription, Security.Cryptography, Version=1.6.0.0, Culture=neutral, PublicKeyToken=31bf3856ad364e35"/>
          </cryptoClasses>
          <nameEntry name="http://www.w3.org/2001/04/xmldsig-more#rsa-sha256"class="RSASHA256SignatureDescription"/>
        </cryptoNameMapping>
      </cryptographySettings>
    </mscorlib>

 

 

 

 

  • No labels