Enable Okta single sign-on integration (SSO)

Everhour provide an easy-to-use integration with Okta to support SSO for you or everyone in your team.

1

Go to Administration Console > Applications. Click Create App Integration button and choose SAML 2.0 option. Click Next button.

2

Fill the form:

• App name: Everhour
• App logo: optional
• App visibility: leave unchecked

3

Fill the form:

• Single sign on URL: Copy and paste Consumer URL (consumerUrl) from Everhour, i.e: https://api.everhour.com/saml/consume
• Use this for Recipient URL and Destination URL: must be checked
• Allow this app to request other SSO URLs: leave unchecked
• Audience URI (SP Entity ID): Copy and paste Metadata URL (metadataUrl) from Everhour, i.e: https://api.everhour.com/saml/metadata
• Default RelayState: leave empty
• Name ID format: EmailAddress
• Application username: Email
• Advanced settings: leave as is

4

Fill the form:

• Are you a customer or partner?: I'm an Okta customer adding an internal app
• App type: This is an internal app that we have created

5

Assign newly created application to people. Select Assignments tab > click Assign > choose Assign to People option.

Select as users as you want to assign and click  Assign button. Specify User Name for a specific user, in our case - email address. Then click Save and Go Back button.

6

Select Application > Everhour > Sign On tab and click on Setup Instruction Data button.

• Copy the Identity Provider Single Sign-On URL and paste the Sign-in page URL into its corresponding field on Everhour (ssoUrl).
• Copy the X.509 Certificate and paste the X.509 Certificate into its corresponding field on Everhour (x509Certificate).