How to Set Up Okta SSO for Jotform Enterprise

July 26, 2024

Okta’s single sign-on solution can quickly connect to third-party services including Jotform. To get started you must enable Single Sign-On on your Jotform Enterprise server. You also need an Okta account with admin permissions.

Note

  • Enabling SAML disables the integrated app’s regular sign-in page. Your users can log in to your server only through Okta.
  • Backup sign-in URLs where users can sign in using their regular username and password are not supported in Jotform Enterprise. You can contact Jotform Enterprise support to turn off SAML if necessary.

The Jotform Enterprise SAML integration currently supports the following features:

  • SP-initiated SSO
  • IdP-initiated SSO
  • Just in Time (JIT) provisioning

Configuring Okta

To create an Okta SAML application

  1. Log in to your Okta admin account and go to the Admin page.
An Admin button in Okta
  1. Go to Applications on the left, then select Create Add Integration.
A Create App Integration button in Okta
  1. In the dialog, select SAML 2.0.
An SAML option in Okta
  1. Next, enter your desired App name.
An App Name field on the Okta SAML settings page
  1. Next, enter your Service Provider Metadata links in the following fields:
Service Provider Metadata links on the Okta settings page
  • Single sign on URL — Use your Jotform Assertion Consumer Service URL
    (e.g., https://example.jotform.com/sso/?acs).
  • Audience URI (SP Entity ID) — Use your Jotform Entity ID
    (e.g., https://example.jotform.com/sso/metadata.php).
  1. Select Next at the bottom, then complete the feedback form.
  2. On your app’s Sign On overview page, select View SAML setup instructions on the right.
A View SAML setup instructions button on the Okta app overview page
  1. Take note of your SAML app’s details.
SAML app details in Okta
  1. Go to your directory and assign your app to people or groups.
A directory menu in Okta
  1. Go to your Jotform SSO settings page and enter the details in the Identity Provider Metadata fields.
Identity provider metadata fields in Jotform

The value to use for each field is as follows:

  • Entity ID — Use your Okta Identity Provider Issuer.
  • SSO URL — Use your Okta Identity Provider Single Sign-On URL.
  • Certificate — Use your Okta X.509 Certificate.
  1. When finished, save and test your configuration in Jotform.

Notes

The following SAML attributes and more are supported:

NameValue
emailuser.email
nameuser.name
surnameuser.surname


You can add more claims and manage them from the Jotform Enterprise admin dashboard.

SP-initiated SSO

SP-initiated flows trigger when the user hits an authentication-required route.

Contact Support:

Our customer support team is available 24/7 and our average response time is between one to two hours.
Our team can be contacted via:

Support Forum: https://www.jotform.com/answers/

Contact Jotform Support: https://www.jotform.com/contact/

Send Comment:

Jotform Avatar
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Podo Comment Be the first to comment.