SAML with Okta

This guide will help you enable SSO from your Okta so your users can securely log into Rely.io without creating new credentials.

This process can only be fully achieved in collaboration with our team.

Exact instructions are provided in the impacted sections below where this exchange of information is required.

Create a new SAML application in the Okta Admin Console

Sign-in to your Okta Admin Console.
On the sidebar, navigate to Applications -> Applications
On the main view, click "Create App Integration" button

In the Modal Dialog, select SAML 2.0 and click Next

Configure SAML Application

Under the General Settings tab

Choose a name of the connection (that name will appear on your Okta apps)
Add application logo (optional)
Click Next

Under the Configure SAML tab

Single sign-on URL set https://auth.rely.io/login/callback/login/callback?connection={CONNECTION_NAME}

Note

We will provide you with a {CONNECTION_NAME}. To get it, use one of our dedicated channels:

Direct outreach to your dedicated Customer Success Manager
In Slack via your Dedicated Channel (for Enterprise customers)
Via your in-product chatbot
Via email to [email protected]

Audience URI (SP Entity ID) set urn:auth0:relyio:{CONNECTION_NAME}
Scroll down to the Attribute Statements section:
1. Add an attribute statement for https://app.rely.io/email with Value set to user.email
Click Next and then Finish to create the application.

To secure the SAML connection, share a certificate with Rely and the Sign-in URL

You can share the data using one of our dedicated channels:

Direct outreach to your dedicated Customer Success Manager
In Slack via your Dedicated Channel (for Enterprise customers)
Via your in-product chatbot
Via email to [email protected]

Navigate to the previously created SAML application
Select the Sign On tab
On Metadata details, click More details to expand the Sign-on URL
Copy the Sign-on URL and share it with Rely

Scroll down to find the SAML Signing Certificates section.
Generate a new certificate via the Generate new certificate button
Find the Active certificate and click Actions
Click Download certificate
Share the certificate with Rely

There you go! You can now use Single Sign-on with Okta and Rely.io.

Sync Okta Groups with Rely (Optional)

You can expose Okta groups with the Rely app. This will allow your Rely users to have their Okta groups in sync with Rely teams. Follow the steps below to expose Okta groups:

In the Okta Admin Console, navigate to Applications and select the newly created SAML application.
Select the General tab
Scroll down to SAML Settings -> Edit
At the Configure SAML tab, scroll down to Group Attribute Statements (optional)
Add groups as names, and filter: Matches regex: .*
Save

When your users log in to Rely using this SAML connection, the user's groups will be imported into Rely as teams out of the box, allowing your users to communicate, share resources and manage tasks efficiently within a group.

PreviousSAML with Microsoft Entra ID NextOIDC with Okta

Last updated 10 months ago

Was this helpful?

Configure SAML Application

Under the General Settings tab

Choose a name of the connection (that name will appear on your Okta apps)

Add application logo (optional)

Click Next

Under the Configure SAML tab

Note

We will provide you with a {CONNECTION_NAME}. To get it, use one of our dedicated channels:

Direct outreach to your dedicated Customer Success Manager
In Slack via your Dedicated Channel (for Enterprise customers)
Via your in-product chatbot
Via email to [email protected]

Audience URI (SP Entity ID) set urn:auth0:relyio:{CONNECTION_NAME}

Scroll down to the Attribute Statements section:

Add an attribute statement for https://app.rely.io/email with Value set to user.email

Click Next and then Finish to create the application.

To secure the SAML connection, share a certificate with Rely and the Sign-in URL

You can share the data using one of our dedicated channels:

Direct outreach to your dedicated Customer Success Manager
In Slack via your Dedicated Channel (for Enterprise customers)
Via your in-product chatbot
Via email to [email protected]

Navigate to the previously created SAML application

Select the Sign On tab

On Metadata details, click More details to expand the Sign-on URL

Copy the Sign-on URL and share it with Rely

Scroll down to find the SAML Signing Certificates section.

Generate a new certificate via the Generate new certificate button

Find the Active certificate and click Actions

Click Download certificate

Share the certificate with Rely

There you go! You can now use Single Sign-on with Okta and Rely.io.

Sync Okta Groups with Rely (Optional)

You can expose Okta groups with the Rely app. This will allow your Rely users to have their Okta groups in sync with Rely teams. Follow the steps below to expose Okta groups:

In the Okta Admin Console, navigate to Applications and select the newly created SAML application.

Select the General tab

Scroll down to SAML Settings -> Edit

At the Configure SAML tab, scroll down to Group Attribute Statements (optional)

Add groups as names, and filter: Matches regex: .*

Save

Create a new SAML application in the Okta Admin Console

Configure SAML Application

Under the General Settings tab

Under the Configure SAML tab

Share the Sign on URL and X509 Certificate with Rely.io

Share the Sign on URL with Rely.io

Share X509 Certificate with Rely

Sync Okta Groups with Rely (Optional)

Create a new SAML application in the Okta Admin Console

Configure SAML Application

Under the General Settings tab

Under the Configure SAML tab

Share the Sign on URL and X509 Certificate with Rely.io

Share the Sign on URL with Rely.io

Share X509 Certificate with Rely

Sync Okta Groups with Rely (Optional)