1. Help Center
  2. Integrations
  3. Getting Started with Integrations

How to setup Okta SAML SSO

👋 To make the SSO configuration with Factorial the person responsible for the SSO connection within the client company has to provide Factorial a metadata file.

In Okta’s Admin Panel:

  • Go to Okta's admin panel
  • Click on Applications and then on add app integration.

Untitled (14)

  • Select SAML 2.0

Untitled (15)

  • Then, you can add the App name, we suggest something like “Factorial SAML”, on the app visibility check, mark the “Do not display application icon to users”, we can configure later the integration with the dashboard if needed.
  • Update the configuration fields according to these values:
**Single sign on URL:**
<https://factorial-production.auth.eu-central-1.amazoncognito.com/saml2/idpresponse>

**Audience URI (SP Entity ID):**
urn:amazon:cognito:sp:eu-central-1_Y8iEmyaEp

**Attribute statements
Name** <http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress>
**Name format** URI Reference
**Value** user.email

Untitled (16)

  • Select "I'm an Okta customer adding an internal app" and click Finish

Untitled (17)

  • In the newly generated application, go to the “Assignments” tab and assign people or groups to this SAML configuration, this will be the people that will have access to Factorial via SAML SSO.

Untitled (18)

  • Now, go back to the “General” tab, and on the bottom right side, click on the “View SAML setup instructions” button.

Untitled (19)

  • In here, you’ll have to go to the bottom of the page and copy the Optional IDP metadata. You will need to create a file in your computer and add this XML to the contents. The file can have any name, but it will need to have .xml extension (factorial_saml.xml for example). Keep this file in hand for the next steps.

Untitled (20)


In Factorial:

  • Go to the Company settings in Factorial, and click on the Set-up SAML SSO in the Single Sign-On section (You need to ask us to activate it, please reach out if you need this functionality).
  • Untitled (21)In the first step of the configuration, please add your company's domain. Add only the domain, for example, with hello@factorialhr.com you would have to include only factorialhr.com. If your company has multiple domains, add them here as well.

Untitled (23)

  • Finally, in the next step, drag and drop (or select on your computer) the downloaded Okta Metadata XML file to the documents zone, after this, you can click on the Save configuration button and the SAML SSO should be activated.

Untitled (24)