1. Create a SAML 2.0 app in your Okta tenant

with these settings:

App name: FreeBusy.io

App logo: download here

Single Sign On URL: https://freebusy.io/saml/acs (use this for Recipient URL and Destination URL)

Audience URI (SP Entity ID): https://freebusy.io/saml/acs

Default RelayState: (leave blank)

Name ID format: Persistent

Application username: Email

ATTRIBUTE STATEMENTS

Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

Name Format: URI Reference

Value: user.email

Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname

Name Format: URI Reference

Value: user.firstName

Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname

Name Format: URI Reference

Value: user.lastName

If your organization has a hybrid environment with some mailboxes on-premise and others in the cloud, add the following attribute

Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/spn

Name Format: URI Reference

Value: map value from AD MsExchRemoteRecipientType attribute (documented here)

2. Once you create the Okta application with the above settings, go to the app management page, and from the Sign On tab copy to clipboard Identity Provider metadata link:

3. Email us at [email protected] the Identity Provider metadata link that link so we can add it to your organization’s account

Did this answer your question?