Okta: Login with SAML
This feature is only available on a Pro or Scale plan and is not enabled by default. If you’d like to enable this feature, please reach out via the chat in the bottom right corner within Aikido.
If you switch to SAML Login instead of auto-onboarding via your Git provider, team import from GitHub, Bitbucket, or Azure DevOps will no longer work. You will need to manage your teams manually moving forward, either through the Aikido UI or Access Profiles.
Setting up SAML in your account
Step 1. Go to General Settings and click 'Enable SAML Authentication'
Step 2. Copy all details to your identity provider. See steps below.
Continue in Okta
Step 1. Go to Applications > Applications in the Admin Console.
Step 2. Click Create App Integration, select SAML 2.0 and click Next.
Step 3. Choose an App name and click Next.
Step 4. Fill the fields Single sign-on URL, Audience URI and Name ID format with the fields visible in Aikido (see above) and click Next.
Step 5. Now you should be on the tab Sign On and you should see Metadata details. Click More details.
Go back to Aikido
Fill in the Entity ID / Issuer, Single Sign-On URL and X.509 Certificate as shown in Okta.
Also fill out the Company Domain to make sure people can log in without the need of a Single Sign-On URL.
Success! People having access to your Okta SAML app will now be able to auto-onboard to your Aikido workspace.
2 options for users to login using your SAML client
Option 1. Using SSO Link Directly
Copy the Login Link and share this internally with other users.
Option 2. Going to the Aikido login screen, selecting Login Via SSO and filling in the email address Important: the email needs to contain the company domain that has been set up.