This doc will help you quickly walk through the steps to create an Okta app and set up the SAML SSO configuration through the app to sign in inside Hippo Video.
To activate SSO you need Hippo Video Enterprise plan
Admin users of Hippo Video and Okta will have access to set up SSO
Note: Before starting with the configuration, ensure that your SSO Configuration page is kept open inside Hippo Video.
To open the SSO configuration page inside Hippo Video:
Login to Hippo Video using existing credentials.
Click on Settings from the left nav bar.
Select SSO Configuration card.
Enter Your IDP domain upon which the ACS URL data gets updated automatically.
To configure SSO with Okta:
Open the Okta portal in a new tab.
Log in with your existing credentials
Click on the More icon from the left.
Click on Applications from the left navbar and then click on Applications.
Click on Create App Integration at the top left.
Select the Sign-in method as SAML 2.0 and then click Next (at the bottom right).
In the General Settings tab, enter the name of your app and then click Next.
To configure SAML:
In the Configure SAML tab, enter the following details:
Go to Hippo Video - SSO Configuration page and copy the ACS URL (will be updated based on the IDP domain).
Then, navigate to Okta portal and paste it inside the Single sign on URL field.
Enter the Audience URI (SP Entity ID) as https://www.hippovideo.com (temporary). This URL will be updated with the unique identifier provided by Okta.
Select the Name ID Format as Email Address.
Note: This email id helps in identifying the user inside Hippo Video.
Click Next at the bottom right.
In the Feedback tab, select your preferred option and then click Finish.
Now, your app is successfully created in Okta.
To set up the configuration inside Hippo Video, pick up the details from Okta:
Once you’ve created the app, you’ll be redirected to this page.
Click on the View Setup Instructions button.
The following page will open in a new tab where you’ll find the details to configure your app with Hippo Video.
Copy the Identity Provider Issuer URL (unique ID generated by Okta).
Then, navigate to your app page (different tab) click on the General tab.
Below the SAML Settings, click Edit.
Click Next at the bottom of the General Settings tab.
Then, click on Configure SAML tab and paste it inside the Audience URI (SP Entity ID).
Click Next at the bottom and then Finish in the next screen.
Now, you have successfully completed the configuration process inside Okta.
To assign the users inside Okta:
You need to add users who are allowed to log in to Hippo Video using SSO.
Click on the Assignments tab.
Click Assign > Assign to People.
Now, click on the Assign button near the appropriate user.
Once assigned, click Done. You’ve successfully assigned users.
To set up the configuration process inside Hippo Video:
From the View Setup Instructions page, copy the Identity Provider Single Sign-On URL.
And, paste it inside Target URL of the Hippo Video - SSO Configuration page.
Then, copy the Identity Provider Issuer URL from Okta.
Go to the Hippo Video - SSO Configuration page and paste it inside the Issuer URL.
Now, navigate to the Okta portal and copy the text that begins right after BEGIN CERTIFICATE … and right before END CERTIFICATE.
Again, navigate to the Hippo Video - SSO Configuration page and paste it inside the X509 Certificate.
Once you’re done, click Save to complete the configuration process.