This article is intended for network administrators who have experience setting up Okta with SAML authentication. It outlines how to set up and establish a connection with Nearmap.
IMPORTANT: We do not support WS-Federation with Okta; you must use SAML.
Setting up SAML integration
- Open the Create SAML Integration wizard.
- On the General Settings tab, give the application a name and click Next.
- On the Configure SAML tab:
- Edit the Basic SAML Configuration. Enter values for:
- Set the Identifier (Entity ID) to
urn:auth0:nearmap:<your Connection ID> - Set the Reply URL (Assertion Consumer Service URL) to
https://auth.nearmap.com/login/callback?connection=<your Connection ID>.
- Set:
- Name ID format - to
EmailAddress - Application username - to
Email
- Add attribute statements.
- Name
email, Value user.email - Name
family_name , Value user.lastName - Name
given_name, Value user.firstName
- You can optionally pass other user properties to Nearmap to populate the user at provisioning by adding attribute statements for Names:
phonemobile_phonejob_title (preferred) or titleorg_unit - for organization unit; this can be department, division, region, etc.- work_country
- Click Next.
- On the Feedback tab, select I’m an Okta customer adding an internal app, and click Finish.
Assign Nearmap applications to your users.
