Configuring OKTA Single Sign On

If you've opted for Single Sign On (SSO) as part of the your organization's GroupMap plan, please follow the instructions below to set up the GroupMap application in OKTA. 

  • In your OKTA dashboard, select "Applications" -> "Applications"

  • Click the "Create App Integration" button

  • In the dialog box:
    • Select "SAML 2.0"
    • Click "Next"

  • On the "Create SAML Integration - General Settings" screen
    • Enter "App name": GroupMap
    • Upload the GroupMap logo (you can download the one below)

    • Click "Next"

  • On the "Create SAML Integration - Configure SAML" screen
    • Enter the Single sign on URL: "https://yourcompanyname.groupmap.com"  (where yourcompanyname is the value given to you by the GroupMap onboarding team)
    • Check "Use this for Recipient URL and Destination URL"
    • Select "Name ID format": EmailAddress
    • Select "Application username": Email
    • Enter the Audience URI (SP Entity ID): https://yourcompanyname.groupmap.com/   
    • In the "Attribute Statements" section, enter the following:
      • firstName = user.firstName
      • lastName = user.lastName
      • email = user.email

    • Click "Next"
  • On the "Create SAML Integration - Feedback" screen
    • Select "I'm an Okta customer adding an internal app"
    • Select "This is an internal app that we have created"
    • Click "Finish"

  • On the "GroupMap" Application Configuration page
    • Go to the "Sign on" tab and scroll down until you see the "View SAML setup instructions" button on the right

  • On the "How to Configure SAML 2.0 for GroupMap Application" page
    • Copy the values of the following three fields and send them to us at info@groupmap.com:
      • Identity Provider Single Sign-On URL
      • Identity Provider Issuer
      • X.509 Certificate

  • You're done!

    Congratulations! The OKTA integration is ready to go on your side. Once GroupMap has received the information above we'll let you know once single sign-on has been enabled and is ready to use.

Note

Once you've completed the steps above and the GroupMap team has enabled Single Sign-On for your organisation, any existing GroupMap email login accounts matching your company's domain (eg. email@yourcompany.com) will be migrated to use SSO sign in; and you will no longer be able to sign in using your old GroupMap email / password combinations. Users who attempt to sign via the GroupMap login screen will be prompted to browse to your SSO login page - https://yourcompany.groupmap.com/

Still need help? Contact Us Contact Us