# Okta

This page assumes that you have already clicked the **Enable SAML** button, and a form is currently displayed in your Datasaur app. Please follow the steps below to integrate with Okta.

## Integrating on Okta

#### Create a New App Integration

1. Login to your Okta Admin.
2. In the left pane, navigate to Applications.
3. Click **Create App Integration**, choose SAML 2.0, and follow the wizard.

   <figure><img src="/files/5JUAin7LlhX5QpZbipww" alt=""><figcaption></figcaption></figure>
4. Enter anything suitable for the App name, e.g. Datasaur. Then, click next.
5. Enter the following information in the second page. Ignore any fields that are not specified below.

   1. **Single sign-on URL**: Use the Service Provider Sign-in URL which you can get directly from the form.
   2. **Audience URI**: Use the Service Provider issuer which will have **datasaur** as the default value. Same as above, it refers to the form on Datasaur app.
   3. **Default RelayState**: Use the Company ID value in this JSON format below.\
      \&#xNAN;**{"companyId": "\<value>"}**
   4. Name ID format: Select the **EmailAddress**.
   5. For the Attribute Statements section, follow these steps:
      1. **email** (required) with basic format (case sensitive). Without this, Datasaur will not allow users to authenticate via SAML. Please provide a valid email just like mentioned above.
      2. displayName (optional) with basic format. This will be the text displayed in the top right of the Datasaur app. If not provided, Datasaur will display the email instead.
   6. For the feedback step, you can select the customer and ignore the rest of the fields since it's all optional.
   7. Finish the wizard.

   <figure><img src="/files/zvEmKbVaiTJuRDBOnw2y" alt=""><figcaption><p>Okta: Create App Integration - Step 2: Configure SAML</p></figcaption></figure>

#### Adding Users to the Newly Created App Integration

1. Assuming you are currently on the newly created app on Okta, go to the Assignments tab.
2. Assign all the users whom you want to be able to sign in on Datasaur via SAML.

## Finishing the Datasaur SAML Form

1. Continuing from the above (still on the newly created app), go to the Sign On tab.
2. Click the **More details** accordion inside the SAML 2.0 section. It will look something like this below.

   <figure><img src="/files/t29hOaU43HBnAgLafYw8" alt=""><figcaption></figcaption></figure>
3. Fill the **Identity Provider Sign-in URL field** with the Sign on URL attribute.
4. Fill the **Identity Provider Issuer field** with Issuer attribute.
5. Fill the **Public Certificate field** with Signing Certificate attribute. Use the copy button and paste it on the Datasaur form. You can also download and saved the file.
6. Finish the form.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.datasaur.ai/integrations/saml/okta.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.