- Create a SAML 2.0 app in your Okta tenant
with these settings:
App name: FreeBusy.io
App logo: download here
Single Sign On URL: https://freebusy.io/saml/acs (use this for Recipient URL and Destination URL)
Audience URI (SP Entity ID): https://freebusy.io/saml/acs
Default RelayState: (leave blank)
Name ID format: Persistent
Application username: Email
ATTRIBUTE STATEMENTS
Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
Name Format: URI Reference
Value: user.email
Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname
Name Format: URI Reference
Value: user.firstName
Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname
Name Format: URI Reference
Value: user.lastName
If your organization has a hybrid environment with some mailboxes on-premise and others in the cloud, add the following attribute
Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/spn
Name Format: URI Reference
Value: map value from AD MsExchRemoteRecipientType attribute (documented here)
2. Once you create the Okta application with the above settings, go to the app management page, and from the Sign On tab copy to clipboard Identity Provider metadata link:
3. Email us at [email protected] the Identity Provider metadata link that link so we can add it to your organization’s account