Skip to main content
All Collections
Enabling SSO by using Okta Connection
Enabling SSO by using Okta Connection

Guide to SSO

Joice avatar
Written by Joice
Updated over a week ago

Plan: this feature is only accessible in the Enterprise Plan

This guide outlines the steps to successfully set up a new Okta SSO connection for Aligned. If you encounter any issues or require further assistance, please reach out to Aligned support at support@alignedup.com or message us via chat.

You can set up Okta using one of the following connection types: SAML Connection or Okta Workforce (OIDC). After completing the setup, please share the required credentials with Aligned support to complete the integration.

Setting up a SAML Connection

  1. Sign in to your Okta admin dashboard using your administrator account.

  2. Navigate to: Applications β†’ Applications.

  3. Click Create App Integration and select SAML 2.0 as the sign-in method.

  4. Provide a name for the app and upload the Aligned logo if desired. Click Next.

  5. Fill in the following fields:

    • Single sign on URL:

      https://auth.teamaligned.com/login/callback?connection=<company_lower_case_name_without_spaces>

    • Audience URI (SP Entity ID):

      urn:auth0:alignedup

  6. In the Attribute Statements (Optional) section, add:

    • email β†’ user.email

    • name β†’ ${user.firstName} ${user.lastName}

  7. Click Next, select I'm an Okta customer adding an internal app, and click Finish.

  8. Go to the Sign On tab.

  9. Under SAML 2.0, copy the Sign On URL and Sign Out URL.

  10. Scroll to the SAML Signing Certificates section and click Generate new certificate.

  11. Download the certificate.

Send the following details to Aligned support:

  • The downloaded SAML certificate (active one)

  • Sign On URL

  • Sign Out URL

Setting up Okta Workforce (OIDC)

  1. In the Okta admin dashboard, go to: Applications β†’ Applications.

  2. Click Create App Integration, select:

    • Sign-in method: OpenID Connect (OIDC)

    • Application type: Web Application

  3. Enter the application name (e.g. Aligned, without spaces) and upload the logo if desired.

  4. Add the following:

    • Sign-in redirect URIs:

      https://auth.teamaligned.com/login/callback

  5. Set your Controlled access settings as needed.

  6. Click Save.

After saving the app:

  1. Copy the Client ID and Client Secret.

  2. Find your Okta domain:

    • Click your username in the upper-right corner of the Okta admin dashboard.

    • Your domain will appear in the dropdown and should look like:

      • example.okta.com

      • example.oktapreview.com

      • example.okta-emea.com

Send the following details to Aligned support:

  • Client ID

  • Client Secret

  • Okta domain

Related Articles
Enabling SSO as Microsoft Entra ID provider for Aligned
Enabling SSO by using SAML Connection
Did this answer your question?