Skip to main content
Security Performance Management
Continuous Monitoring
Vendor Risk Management
Trust Management Hub
Cyber Insurance
National Cybersecurity

Integrating Bitsight with Okta

Ingrid

The current Okta Catalog Connector is deprecated, as the endpoints are now different. Please see Getting started (Custom) in the documentation below.

Refer to the following guide to integrate the Bitsight platform with Okta or use an additional custom connector if additional attributes, such roles and groups, are needed. A Bitsight catalog application for Okta is available and is searchable by simply adding a new application and searching for “Bitsight.”

You must be an Admin to integrate Bitsight with Okta. See permissions.

Additional resources:

Getting Started

Catalog App

  1. Navigate to your Admin instance on the Okta dashboard
  2. Applications
  3. Search Application
  4. Bitsight - Add
  5. Audience Restriction = https://service.bitsighttech.com/saml/metadata/
  6. Save

Custom Application

  1. Navigate to your Admin instance on the Okta dashboard
  2. Applications
  3. Create New Application
  4. Platform = Web - New Application = SAML 2.0

Basic SAML Configuration

  1. Single Sign on URL = https://service.bitsighttech.com/saml/acs/GUID
  2. Audience URI (SP Entity ID) = https://service.bitsight.com/saml/GUID
  3. Name ID format = emailAddress
  4. Application username = email

Your unique identifier can be found in your account under the SAML settings URLs.

Detail Contents
Identifier (Entity ID) https://service.bitsight.com/saml/GUID
Reply URL (Assertion Consumer Service URL) https://service.bitsighttech.com/saml/acs/GUID

User and Attribute Claims

When entering the user an attribute claims you must select URI. Attribute Statements (optional) the first name space is urn:oid:0.9.2342.19200300.100.1.3 - URI reference - Value = user.email.

  1. Enter the claim name for given name and replace with urn.oid.2.5.4.3 mapped to user.firstName
  2. Enter the claim name for last name and replace with urn.oid.2.5.4.4 mapped to user.lastName
Claim Name Value
urn:oid:2.5.4.3 user.firstName
urn:oid:2.5.4.4 user.lastName
urn:oid:0.9.2342.19200300.100.1.3 user.email

Although not required for this integration, you can specify additional attributes as outlined in Optional Attributes (Not Required).

Downloading and Uploading Metadata

Once you have configured SAML and saved the steps above, refer to the following instructions to download the metadata XML from Okta and upload it to Bitsight.

  1. Select Download Metadata XML under the SAML Sign on Settings category in Okta.
  2. On the Bitsight platform, navigate to the SAML page [settings.png Settings ➔ SAML].
  3. Select Load from URL from the SAML Metadata for your IdP section.
  4. Open the file Downloaded from Step 1.

Optional Attributes (Not Required)

See additional SAML 2.0 attributes that can be specified (full name, user role, and user group). They are optional and not required for this integration.

  • October 12, 2021: Added directory to sections.
  • June 21, 2019: Published.

Related articles

Feedback

0 comments

Please sign in to leave a comment.