From your Okta's Administrative account, click on Applications from the top menu, and then click Add Application. From the left menu click on the Create New App button.
For the Platform option, select Web.
For the Sign on method, select SAML 2.0.
Then click Create.
On the next screen, we need to supply some basic information for the application.
For the App Name, provide a friendly name for the NAAservice, e.g. Access Anywhere. Optionally you can also provide an App logo that users would recognize.
Click Next.
On the SAML settings screen we want to configure the fields as follows:
Under Show Advanced Settings:
Under Attribute Statements configure the mappings as follows:
user.email
user.firstName + " " + user.lastName
user.login
Under Group Attribute Statements, you will need to choose which groups need to be exposed to Access Anywhere.
A Groups Entry will need to be added with a name of “groups”. The Value is dependant on what you would like to expose to Access Anywhere. Some examples are below:
Follow the on-screen steps to save the changes.
On the Application Details screen, under Sign On, click the View Setup Instructions button.
Configure Access Anywhere following the instructions at Configuring a SAML Auth System using the settings below:
Before users are able to access the Okta application, Users or Groups must be assigned the application for it to be available to them.
Your Okta setup with the Access Anywhere server is now complete.