How To
Summary
This document outlines how to set up SAML services for enrollment in to MaaS360 leveraging an Okta developer account.
Steps
From the Okta dashboard, select Applications from the menu, then select Create app integration.
Select SAML 2.0
Add the app name (MaaS360 is recommended) and optionally upload a logo. Select Next.
There are two required fields that need to be populated with data from MaaS360.
Single sign-on URL - Assertion Consumer Service URL in MaaS360
Audience URI - Entity ID in MaaS360
Single sign-on URL - Assertion Consumer Service URL in MaaS360
Audience URI - Entity ID in MaaS360
The values for these fields can be found by navigating to Setup >> Settings >> Directory and Authentication. Select Add Authentication Type >> Cloud Based >> SAML
Note: If this is a first-time setup, there might be some additional steps that provision an IBM Verify tenant to facilitate SAML enrollments.
The MaaS360 window provides the necessary information to copy over to the Okta environment:
Copy and paste these fields to their respective lines in the Okta portal. The values for the remainder of the fields vary from one organization to the next, depending on use cases, but their configuration is optional.
Progress to the next screen, complete the optional feedback form, and Finish.
From the Sign-on tab of the newly created SAML app, select View Setup Instructions or Identity Provider metadata. Both options lead to the required information but the latter is more direct. Save the metadata as an XML file.
From the Sign-on tab of the newly created SAML app, select View Setup Instructions or Identity Provider metadata. Both options lead to the required information but the latter is more direct. Save the metadata as an XML file.
Once the XML file is downloaded, navigate back to the MaaS360 portal where we left off on the SAML settings. Enter the Identity provider name to the first field and upload the XML, then select save.
Now that the SAML setup is complete, test the enrollment link and make sure that the Okta sign-in displays as expected.
Document Location
Worldwide
[{"Type":"MASTER","Line of Business":{"code":"LOB24","label":"Security Software"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSYSXX","label":"IBM MaaS360"},"ARM Category":[{"code":"a8m0z000000070eAAA","label":"SETUP"}],"ARM Case Number":"","Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"All Versions"}]
Was this topic helpful?
Document Information
Modified date:
29 March 2022
UID
ibm16567219