Logon LabsBread and Butter

We’ve made some changes. Logonlabs.com is still here for you to view but, if you want the latest on our product please view the Bread & Butter IO website here:

How To Set Up Your Own Okta App (SAML)

Step 1

Log in to your Okta account as an Administrator.

Step 2

At the top left of the page, change to Classic UI.

Step 2

Step 3

Go to Applications, then click Add Application, then click Create New App.

Step 4

  • Choose platform Web.
  • For Sign on method, select SAML 2.0.
  • Click Create.
Step 4

Step 5

For Application Name, enter your organization’s name. Then, click Next

Step 6

  • For Single sign on URL enter:https://api.logonlabs.com/callback
  • For Audience URI (SP Entity ID) enter your App ID (App ID can be found under App Settings in LogonLabs)
Step 6

Step 7

For Advanced Settings, please ensure that the following are set:

  • Response set to Signed
  • Assertion Signature set to Signed
  • Assertion Encryption set to Unencrypted
Step 7

Step 8

Under Attribute Statements (Optional), add the following entries:

  • Name email and value user.email.
  • Name first_name and value user.firstName
  • Name last_name and value user.lastName
  • Name uid and value user.id (please note that you will need to type this value, as it is not in the dropdown)

Click Next

Step 8

Step 9

  • Select I’m an Okta customer adding an internal app
  • Select This is an internal all that we have created.
  • Click Finish.
Step 9

Step 10

Go to the Sign On tab, and click the View Setup Instructions button. Take note of the settings for the LogonLabs setup below.

Step 10

Step 11

Add your users to the App.

Step 12

LogonLabs Setup:

  1. Go to logonlabs.com
  2. Click Sign In and authenticate (or Sign Up make a new account and authenticate).
  3. Navigate to Providers, then to Default Rules (or Domain Rules and open/create a domain module).
  4. Click on the Okta button under Enterprise Identity Providers.
  5. Choose SAML for the protocol.
  6. Enter a name.
  7. Enter a description (optional).
  8. Enter the Identity Provider Single Sign-On URL from the Okta setup instructions above.
  9. Enter the Identity Provider Issuer from the Okta setup instructions above.
  10. Enter the X.509 Certificate from the Okta setup instructions above. Do not include the BEGIN and END tags.
  11. Click Save & close.
  12. Enable Okta by clicking the new entry in the Okta Identity Providers list.
Step 12