Configuring Okta SSO

  1. Login to your Gatekeeper account as an administrator.

2. Navigate to Settings > Configuration > Authentication:

configuration-1

3. Select Configure Okta, then click Save:

4. Enter the following (see screenshot at end of step for reference):

Application ID:
First, generate the following value:

Sign into the Okta Admin Dashboard, click this link and navigate to Step 4 to view the Application ID.

Take the last part of the generated value and paste it into the Application ID field.

For example, the value for the application ID field is the text shown in bold here: http://www.myCompany.com/exk18o312mrXCbUs21d8

Identity Provider Single Sign-On URL:
Copy and paste the following:
Sign into the Okta Admin Dashboard, click this link and navigate to Step 4 to view the Identity Provider Single Sign-On URL.

X.509 Certificate:
Copy and paste the following:
Sign into the Okta Admin Dashboard, click this link and navigate to Step 4 to view the X.509 Certificate data.

Click Save.

5. In Okta, select the General tab for the Gatekeeper app, then click Edit.

  • Enter your [your-gatekeeper-baseURL] into the Base URL:
  • Click Save.

6. Done!

Notes:
SP-initiated flows and IDP-initiated flows are supported.
Just In Time (JIT) provisioning is not supported.

Test the SAML connection (Okta SSO)

  1. Select Allow all authentication methods, then click Save:

2. Go to https://gatekeeperhq.com/users/sign_in and click SIGN IN WITH OKTA:

3. Type in your email address, then click FIND ACCOUNT: then enter your Okta credentials.

4. You are now logged into your Gatekeeper account.

Restrict Access to just (Okta SSO)

Now you have successfully tested Okta SSO, you can restrict access to only use Okta SSO

1. Login to your Gatekeeper account as an administrator.
2. Navigate to Settings > Customisations > Authentication
3. Select Require Okta Single Sign On (SSO), then click Save:

That's it, now the only access to Gatekeeper is using Okta SSO.

If you have any issues, please contact Gatekeeper support.

 

Note. Access to the Employee Portal and Supplier Portal remain via username and password when SSO authentication is set.