This article includes provider-specific, step-by-step instructions for configuring SAML SSO in supported Identity Providers. Use this guide to complete the Identity Provider setup before returning to the main SAML SSO configuration article.
Configure SAML SSO with Okta
Follow these steps to configure SAML SSO using Okta:
-
Navigate to the Compliance Manager Admin → SAML SSO → Settings, and make a note:
- Entity ID
- ACS URL
- Log in to the Okta Admin Console.
- Go to Applications → Applications.
- Click Create App Integration.
- Select Web as the platform and SAML 2.0 as the sign-on method.
- Click Next.
- Enter an app name (for example, Healthicity) and click Next.
-
Configure SAML settings:
- Single Sign-On URL: https://{subdomain}.compliancemanager.healthicity.com/saml/consume
- Select Use this for Recipient URL and Destination URL
- Audience URI (SP Entity ID): https://{subdomain}.compliancemanager.healthicity.com
- Name ID Format: EmailAddress
- Application Username: Email
- Click Next, then Finish.
Obtain Okta Metadata
- Open the application you created.
- Go to the Sign On tab.
- Click View Setup Instructions.
- Copy the IdP metadata provided.
- Return to the main SAML SSO article and continue with Step 4.
Configure SAML SSO with OneLogin
Follow these steps to configure SAML SSO using OneLogin:
- Navigate to the Compliance Manager.
- Download SP Metadata (recommended).
- Note your Compliance Manager subdomain.
- Log in to the OneLogin Admin Portal.
- Go to Applications → Add App.
- Search for and add the Healthicity application.
- Open the application and go to the Configuration tab.
- Enter your Compliance Manager subdomain.
-
Go to the Parameters tab and configure:
- NameID = Email
- Assign the application to users or roles.
- Save the configuration.
Download OneLogin Metadata
- In the application, click More Actions.
- Select SAML Metadata.
- Download and save the XML file.
- Return to the main SAML SSO article and continue with Step 4.
Configure SAML SSO with ADFS
Follow these steps to configure SAML SSO using ADFS:
- Navigate to the Compliance Manager.
- Note the Entity ID.
- Note the ACS URL.
- (Optional) Download SP Metadata.
- Log in to the server where ADFS is installed.
- Open ADFS Management.
- Select Relying Party Trusts.
- Click Add Relying Party Trust.
-
Choose one of the following:
- Import data from the SP Metadata file, or
- Enter data about the relying party manually
-
If entering manually:
- Enable SAML 2.0 WebSSO.
- Enter the ACS URL.
- Set the Relying Party Trust Identifier (Entity ID).
- Complete the wizard.
Obtain ADFS Metadata
- Access the federation metadata URL or export metadata from ADFS.
- Save the metadata XML file.
- Return to the main SAML SSO article and continue with Step 4.
© Healthicity, LLC
Comments
0 comments
Please sign in to leave a comment.