Setting up Corporate Login/SSO for ProntoForms using Okta

 

 

This feature is available on the following tiers: Enterprise.

 

 

About

This article is specific to configuring Okta as a corporate login identity provider (IdP). It expands on what is discussed in the general corporate login article here.

 

Setting up Okta for use with ProntoForms

Follow the steps below to set up Okta for use with ProntoForms:

Create an Application in Okta

  1. Set the Platform to "Web"
  2. Set the Sign on method to "SAML 2.0"
  3. On the General > App Settings, specify an Application Label (ex. ProntoForms)
  4. In the Configure SAML Settings:
    • Single sign on URL = https://live.prontoforms.com/saml/SSO
    • Check "Use this for Recipient URL and Destination URL"
    • Audience URI (SP Entity ID) = prontoforms.com/prod
    • Application username is typically set to Okta username or email, but this is based on your specific configuration. In general, you need to specify the setting here such that the username returned by Okta will match the username in live.prontoforms.com
    • You will end up with something similar to:

blobid9.jpg

 

Download the Identity Provider (IdP) Metadata from Okta

  • Download the identity provider metadata xml from Okta by clicking on the "Sign on" tab, then click "Identity Provider metadata":

blobid10.jpg

  • Save this file for use in the next section.

Set Up Corporate Login in ProntoForms

  • Within live.prontoforms.com, navigate to the security tab and click Update within the Single Sign-on menu:
  • blobid8.jpg
  • Provide a Team domain name. This is typically just your corporate domain name (ex. acme.com).
  • Specify a problem contact email
  • Optional: Specify a Username suffix. This is only required if you need to add a suffix to the username returned by okta so that is matches the username within live.prontoforms.com. As an example, if okta is configured to send just the username prefer (ex. jsmith), but the prontoforms username is jsmith@acme.com, you will want to specify @acme.com as the username suffix. However, if okta is configured to send the username as the users email address, and the Pronotofrms username is also the email address, leave the Username suffix field blank.
  • Click "Choose File" under the "Identity Provider Metadata" section and select the file downloaded from Okta in the section above.
  • Click Update. 

At this point you are complete in setting up a Corporate Signon using Okta. If you are prompted with an error or have any issues with these steps please contact Support. 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments