SSO — Single Sign-On Setup: Okta


In this topic, you will learn how to set up SSO with your Okta account by configuring:

  • Okta (the Identity Provider or IdP)
  • CloudCheckr (the Service Provider or SP)


  1. In your Administration console, go to Applications tab, and click Create New App.

  2. Select the SAML 2.0 option.

  3. Under General Settings, go to the App name text field and type CloudCheckr
  4. Configure the following SAML settings:
    1. Single Sign-On URL:
    2. For iDP-initiated SSO, type

      For SP-initiated SSO, type

    3. Use this for Recipient URL and Destination URL: Yes
    4. Audience URI (SP Entity ID):
    5. For iDP-initiated SSO, type

      For SP-initiated SSO, type

    6. Name ID format: EmailAddress
    7. Default username: Email
    8. Response: Signed
    9. Assertion: Signed
    10. Authentication context class: X.509 Certificate
    11. Request compression: Compressed
  5. On the Sign On tab of the new application, click the Identity Provider metadata link to download an XML file that contains the metadata from Okta that CloudCheckr requires to complete the setup.

  6. On the People tab, click the Assign Application button to select the link that users will see when they log onto CloudCheckr.
  7. Note: Email addresses as SSO usernames are required, so if your users do not have email, you must provide an email address.

Configure in CloudCheckr

Please email support to ensure your CloudCheckr account is properly configured to allow access via Okta.

See Also:
CloudCheckr Single Sign-On

Leave a Reply