Skip to main content

XTM Cloud 13.5

Using Okta Single Sign On (SSO) in XTM Cloud

XTM Cloud supports SSO powered by Okta. To configure this solution, you need:

To be able to use Okta SSO in XTM Cloud:

To configure SSO in Okta:
  1. Log in to your Okta account.

  2. Select the Admin button.

  3. In the Get started with Okta screen (available in Dashboard > Getting started), find Use single sign on and select the Add app button. Then, select the Create New App button.

    Alternatively, select Applications > Applications and the Create App Integration button.

  4. In the Create a new app integration popup:

    1. for the Sign-in method parameter, select SAML 2.0.

    2. Select the Next button.

  5. In the General Settings tab screen of Create SAML Integration:

    1. provide the App name.

    2. upload the App logo (optional).

    3. Select the Next button.

  6. In the SAML Settings screen of Create SAML Integration, for the following parameters select the required options:

    Table 2. SAML Settings parameters

    Parameter

    Required value

    General section

    Single sign-on URL

    In the metadata.xml file (that you received from XTM Support), find the AssertionConsumerService node and copy and paste the value of the Location attribute.

    Use this for Recipient URL and Destination URL

    Select checkbox.

    Audience URI (SP Entity ID)

    In the metadata.xml file (that you received from XTM Support), find the EntityDescriptor node and copy and paste the value of the entityID attribute.

    Default RelayState

    Leave empty.

    Name ID format

    Select the value EmailAddress or Unspecified.

    Application username

    Select the value Email.

    Update application username on

    Select the value Create and update.

    Attribute Statements section

    Name

    Enter the value email or username.

    Name format

    Select the value Basic.

    Value

    Select the value user.email or user.login.


  7. Select Next.

  8. Select Finish.

  9. Copy value of the Metadata URL parameter.

    Alternatively, copy the values of the following parameters:

    • Sign on URL.

    • Issuer.

    • Signing Certificate.

To configure XTM Cloud
  1. From your Okta account, copy the value of the Metadata URL parameter.

    Alternatively, copy the values of the following parameters:

    • Sign on URL.

    • Issuer.

    • Signing Certificate.

  2. Contact XTM Support and provide them with the details mentioned above.

    To request support

    Visit our Support Portal.

XTM Support team will notify you once the SSO configuration is completed.

Note

XTM Cloud can automatically create users when they sign in to XTM Cloud for the first time.

This option requires these parameters to be passed in the SAML attributes map in SAML login response:

  • first name.

  • last name.

  • roles - If this value has not been provided, XTM Cloud will create the new user with the Linguist role. XTM Cloud Administrator and Project Managers can change it in user details configuration.

  • workflow steps - This value is required for Linguist role. If this value has not been provided for the user with Linguist role, XTM Cloud will grant them access to the Translate, Correct, Review steps.

  • username.

  • nickname.

  • email.

  • default currency.