Wiki source code of Okta SAML Integration Example
Version 1.2 by Mark Kohlmann on 2025/05/09 20:22
Hide last authors
| author | version | line-number | content |
|---|---|---|---|
 |
1.2 | 1 | Okta may be used to authenticate users for ShowRunner using SAML. The following instructions will assist with configuring Okta and ShowRunner to work together to authenticate users. |
| |
1.1 | 2 | |
| 3 | Integration Steps as of May 9th, 2025 | ||
| 4 | |||
| 5 | 1. Create App Integrations | ||
| 6 | Select 'SAML 2.0' | ||
| 7 | 1. General Settings | ||
| 8 | App name: Can be whatever is meaningful | ||
| 9 | 1. Configure SAML: | ||
| 10 | 11. A - SAML Settings | ||
| 11 | 111. General | ||
| 12 | Single sign-on URL: https:~/~///your-crestron-processor-ip///cws/showrunner-saml/acs | ||
| 13 | Audience URI (SP Entity ID): showrunner-saml-//processorhostname// or what is specified in settings | ||
| 14 | Default RelayState: (empty) | ||
| 15 | Name ID format: Unspecified or EmailAddress | ||
| 16 | Application username: Okta username | ||
| 17 | Update application username on: Create and update | ||
| 18 | 1111. Attribute Statements (optional)((( | ||
| 19 | (% style="width:1000px" %) | ||
| 20 | |=Required|=Name|=Name format|=Value | ||
| 21 | |Y|http:~/~/schemas.microsoft.com/identity/claims/objectidentifier|URI Reference|user.Id | ||
| 22 | |Y|http:~/~/schemas.microsoft.com/ws/2008/06/identity/claims/role|URI Reference|appuser.userRole | ||
| 23 | |Y|http:~/~/schemas.xmlsoap.org/ws/2005/05/identity/claims/name|URI Reference|user.login | ||
| 24 | |Y|http:~/~/schemas.microsoft.com/identity/claims/displayname|URI Reference|user.displayName | ||
| 25 | |N|pin|Basic|appuser.pin | ||
| 26 | |N|touchscreenAccessLevel|Basic|appuser.touchscreenAccessLevel | ||
| 27 | |N|userLoginMethod|Basic|Arrays.toCsvString(appuser.userLoginMethod) | ||
| 28 | |N|userLoginPermitted|Basic|Arrays.toCsvString(appuser.userLoginPermitted) | ||
| 29 | ))) | ||
| 30 | 1. ((( | ||
| 31 | Feedback - Complete per corporate policy | ||
| 32 | ))) |