This doc will help you quickly walk through the steps to create an Okta app and set up the SAML SSO configuration through the app to sign in inside Hippo Video.
To activate SSO you need Hippo Video Enterprise plan
Admin users of Hippo Video and Okta will have access to set up SSO
Before starting with the configuration, ensure that your SSO Configuration page is kept open inside Hippo Video.
Click Settings from the left nav bar and then click on the SSO Configuration card.
Enter Your IDP domain (Okta domain address). You’ll see that the ACS URL (at the bottom) is updated accordingly.
To configure SSO with Okta
Open the Okta portal in a new tab and log in with your existing credentials.
Click on Applications from the left navbar and then click on Applications.
Click on Add Application at the top and then click on Create New App at the top right.
The Platform must be on the Web.
Select the Sign on method as SAML 2.0 and then click Create.
In the General Settings tab, enter the name of your app and then click Next.
To configure SAML
In the Configure SAML tab, enter the following details:
The Single sign on URL is an ACS URL. Navigate to the Hippo Video - SSO Configuration page and copy the ACS URL (will be updated based on the IDP domain).
Then, go to the Okta portal and paste it inside the Single sign on.
Enter the Audience URI (SP Entity ID) as https://www.hippovideo.com (temporary). This URL will be updated with the unique identifier provided by Okta.
Select the Name ID Format as Email Address.
Note: This email id helps in identifying the user inside Hippo Video.
In the Feedback tab, select your preferred option and then click Finish.
Now, your app is successfully created in Okta.
To set up the configuration inside Hippo Video, pick up the details from Okta
Click on the View Setup Instructions button and copy the Identity Provider Issuer URL (unique ID generated by Okta).
Then, click on the General tab.
Below the SAML Settings, click Edit.
Then, click on Configure SAML tab and paste it inside the Audience URI (SP Entity ID).
Click Next and Finish.
Now, you have successfully completed the configuration process inside Okta.
To set up the configuration process inside Hippo Video
From the View Setup Instructions page, copy the Identity Provider Single Sign-On URL.
Navigate to Hippo Video - SSO Configuration page and paste it inside Target URL.
Then, copy the Identity Provider Issuer URL from Okta.
Again, navigate to the Hippo Video - SSO Configuration page and paste it inside the Issuer URL.
Now, navigate to the Okta portal and copy the text that begins right after BEGIN CERTIFICATE … and right before END CERTIFICATE.
Again, navigate to the Hippo Video - SSO Configuration page and paste it inside the X509 Certificate.
To assign the users inside Okta
You need to add users who are allowed to log in to Hippo Video using SSO.
Click on the Assignments tab.
Click Assign > Assign to People.
Now, click on the Assign button near the appropriate user and then click Save and Go Back.
Once assigned, click Done. You’ve successfully assigned users.
To complete the configuration process inside Hippo Video
Navigate to Hippo Video - SSO Configuration page and check for the details filled.
Then click on Save to complete the configuration process.