In your Okta account, go to Applications and click Create App Integration
Choose SAML 2.0
3. On the Configure SAML step use these settings:
App name: FreeBusy
App logo: download here
Single Sign On URL: https://freebusy.io/saml/acs (use this for Recipient URL and Destination URL)
Audience URI (SP Entity ID): https://freebusy.io/saml/acs
Default RelayState: (leave blank)
Name ID format: Persistent
Application username: Email
Update application username on: Create and update
4. Also on the Configure SAML step add these attributes
Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
Name Format: URI Reference
Value: user.email
Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname
Name Format: URI Reference
Value: user.firstName
Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname
Name Format: URI Reference
Value: user.lastName
If your organization has a hybrid environment with some mailboxes on-premise and others in the cloud, add the following attribute
Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/spn
Name Format: URI Reference
Value: map value from AD MsExchRemoteRecipientType attribute (documented here)
5. Once you create the Okta application with the above settings, go to the app management page, and from the Sign On tab click on View SAML setup instructions, then copy to clipboard IDP metadata link or IDP metadata:
6. Email us at [email protected] the Identity Provider metadata link that link so we can add it to your organization’s account