SSO function
      Back to home
      1. HireRoo Help Center
      2. Features
      3. SSO function

      Setting SAML with Okta

      HireRoo supports SSO (Single Sign-On) with SAML 2.0 for improved security. This article explains the steps for setting up SSO with Okta as the IdP side configuration.

      Contracted plan: Enterprise

      Please refer to this page for details on how to set up SSO.

      ①Log in to Okta

      Please log in as an administrator since administrator account privileges are required.

      ② Create an Application

      Click [Applications] > [Browser App Catalog] and click [Create New App] button.

      スクリーンショット_2022-04-06_20.27.17

      In the pop-up window, select "SAML 2.0" and click the "Next" button.

      スクリーンショット_2022-04-06_20.27.26

      Enter any app name (e.g. HireRoo) in "App name" and click "Next

      スクリーンショット_2022-04-06_20.47.34

      (Please use the following image for any logo)

      HireRoo_Logo

      Next, set the "Single sign on URL" and "Audience URI"; copy and paste the "SP Endpoint URL" and "SP Entity ID" from the HireRoo app, respectively.

      スクリーンショット_2022-04-06_21.20.13

      Okta configuration items  Input value
      Single sign on URL Copy and paste the "SP Endpoint URL" displayed on HireRoo's SSO configuration screen.
      Audience URI (SP Entity ID)

      Copy and paste the "SP Entity ID" displayed on HireRoo's SSO configuration screen.
      Default RelayState Blank
      Name ID format Select "Unspecified"
      Application username Select "Email"
      Update application username on Select "Create and update"

      Then enter "Attributes Statements (optional)" as shown below.

      スクリーンショット_2022-04-06_20.49.24

       
      Okta setting items
      Input Value
      Name
      Enter "email"
      Name format (optional)
      Select "Unspecified"
      Value
      Enter "user.email"

      Then click the "Next" button to jump to the last step as shown in the figure below.

      Select "I'm an Okta customer adding an internal app" and then check "This is an internal app that we have created" and click "Finish".

      スクリーンショット_2022-04-06_20.49.49

      ③ Assign a user

      After the screen changes, click [Assignments] > [Assign] to assign the user for SSO.

      スクリーンショット_2022-04-06_20.50.15

      ④Register the IdP settings on the HireRoo side

      [Click on the Sign On tab > View Setup Instructions to obtain the necessary information for SSO settings on the HireRoo side.

      スクリーンショット_2022-04-06_20.50.42

      スクリーンショット_2022-04-06_22

      Okta configuration items
      HireRoo configuration items
      Identity Provider Single Sign-On URL
      Copy and paste into "Identity Provider Endpoint URL (SSO URL)" on HireRoo's SSO Settings page.
      Identity Provider Issuer
      Copy and paste into "Entity ID of IdP" on HireRoo's SSO Settings page.
      X.509 Certificate
      Copy and paste into the "IdP's certificate (X.509 certificate)" on HireRoo's SSO configuration screen

      This completes Okta's configuration, please click here for HireRoo's configuration.