Using Okta Single Sign On (SSO) in XTM Cloud
XTM Cloud supports SSO powered by Okta. To configure this solution, you need:
metadata.xml
file from XTM Support:To request support
Visit our Support Portal.
verified Okta account (for details, see https://www.okta.com/products/single-sign-on/).
To be able to use Okta SSO in XTM Cloud:
You need to configure your Okta account.
XTM Support needs to configure your XTM Cloud account.
Log in to your Okta account.
Select the Admin button.
In the Get started with Okta screen (available in Dashboard > Getting started), find Use single sign on and select the Add app button. Then, select the Create New App button.
Alternatively, select Applications > Applications and the Create App Integration button.
In the Create a new app integration popup:
for the Sign-in method parameter, select SAML 2.0.
Select the Next button.
In the General Settings tab screen of Create SAML Integration:
provide the App name.
upload the App logo (optional).
Select the Next button.
In the SAML Settings screen of Create SAML Integration, for the following parameters select the required options:
Table 2. SAML Settings parametersParameter
Required value
General section
Single sign-on URL
In the
metadata.xml
file (that you received from XTM Support), find the AssertionConsumerService node and copy and paste the value of the Location attribute.Use this for Recipient URL and Destination URL
Select checkbox.
Audience URI (SP Entity ID)
In the
metadata.xml
file (that you received from XTM Support), find the EntityDescriptor node and copy and paste the value of the entityID attribute.Default RelayState
Leave empty.
Name ID format
Select the value EmailAddress or Unspecified.
Application username
Select the value Email.
Update application username on
Select the value Create and update.
Attribute Statements section
Name
Enter the value email or username.
Name format
Select the value Basic.
Value
Select the value user.email or user.login.
Select Next.
Select Finish.
Copy value of the Metadata URL parameter.
Alternatively, copy the values of the following parameters:
Sign on URL.
Issuer.
Signing Certificate.
From your Okta account, copy the value of the Metadata URL parameter.
Alternatively, copy the values of the following parameters:
Sign on URL.
Issuer.
Signing Certificate.
Contact XTM Support and provide them with the details mentioned above.
To request support
Visit our Support Portal.
XTM Support team will notify you once the SSO configuration is completed.
Note
XTM Cloud can automatically create users when they sign in to XTM Cloud for the first time.
This option requires these parameters to be passed in the SAML attributes map in SAML login response:
first name.
last name.
roles - If this value has not been provided, XTM Cloud will create the new user with the Linguist role. XTM Cloud Administrator and Project Managers can change it in user details configuration.
workflow steps - This value is required for Linguist role. If this value has not been provided for the user with Linguist role, XTM Cloud will grant them access to the Translate, Correct, Review steps.
username.
nickname.
email.
default currency.