OKTA

Log into your OKTA account

1. Go to https://*******-admin.okta.com/admin/apps/active
2. Click on Add Application
3. Create a new app
4. Select Platform Web and SAML 2.0

In the SAML Settings fill in the following fields:

1. Single Sign On URL
2. https://<your-subdomain>.mobilize.io/users/auth/saml/callback
3. Recipient URL
4. https://<your-subdomain>.mobilize.io/users/auth/saml/callback
5. Destination URL
6. https://<your-subdomain>.mobilize.io/users/auth/saml/callback
7. Audience Restriction
8. https://<your-subdomain>.mobilize.io/users/auth/saml/metadata

Note: These domains must be linked to your community's current domain.  If your domain updates or if you are using a custom domain- the new domain must be reflected here.

7. In the assignments tab, make sure you added the member in the assignments

Go to Sign on tab

1. View Setup Instructions
2. Copy Identity Provider Single Sign-On URL and paste it in Mobilize Setup screen in SSO Target URL
3. Copy Identity Provider Issuer and paste in Mobilize setup screen in Metadata url
4. Download Certificate
5. You will need to create a sha1 hash for the certificate.
6. In osx open the terminal to where you downloaded the certificate
7. And run openssl x509 -noout -fingerprint -sha1 -inform pem -in okta.cert
8. Copy the output and pase it in fingerprints field in Mobilize setup