Step 2 — Create a New SAML Application and Define User Group Mappings in Okta

Note

Note

You must create the user groups in the IdP before you can map the user roles in ExtremeCloud‌ IQ.
  1. From Okta, navigate to Applications > Applications, and then select Create App Integration.
  2. Select SAML 2.0, and then select Next.
  3. Enter an App name, and then select Next.
  4. In the SAML Settings section, enter temporary URLs as a placeholder that will be updated later for the following fields:
    • Single sign-on URL: https://replaceme
    • Audience URI (SP Entity ID): https://replaceme
  5. Scroll down to the Attribute Statements section.
  6. Set Name to user.email and the corresponding Value to user.email, and then select Add Another.
  7. Set Name to user.firstName and the corresponding Value to user.firstName, and then select Add Another.
  8. Set Name to user.lastname and the corresponding Value to user.lastname.
  9. Scroll down to the Group Attributes section:
    1. Set Name to user.group.
    2. Set the corresponding Filter to Matches regex, and then set the Value to .* (a period followed by an asterisk).
  10. Select Next.
  11. On the Help Okta Support understand how you configured this application page, set App Type, and then select This is an internal app that we have created.
  12. Select Finish.
9038990-00 Rev AB