After signing in or creating your Okta account you'll need to add a new SAML SSO
application. Click on
Applications in the top navigation bar and then the 'Create New App' button.
Web as the platform and check the
SAML 2.0 radio button.
Fill in any required metadata, upload company logos you'd like to use, and save the new application. Here is a link to our logo you can use.
Click 'Next' at the bottom right to start filling out Tuples required metadata.
Fill in all the required fields like you see below:
Next, head to the
section to add our required fields.
These fields will be sent along in the SSO response. There are three fields that Tuple
requires in order to work:
After finishing the install wizard, click on the
Sign On tab and then
View Setup Instructions
Draft a new email to
firstname.lastname@example.org and attach the downloaded certificate.
Identity Provider Issuer (Entity ID) and
Identity Provider Single Sign-On URL (authentication URL) into the body of
the email. If you want to automate user priovisioning using SCIM (see below) not that here
so we can issue credentials.
Enable System for Cross-domain Identity Management (SCIM) to automatically provision/deprovision user accounts and update profiles in Tuple when updated in Okta.
In "General", set Provisioning to "SCIM":
In "Provisioning", configure with the following values:
Enable the features you'd like to use. Note that Tuple does not current support Groups.
For authorization, use the credentials sent to you after Step 4, or contact
In "Provisioning", enable each feature in the direction from Okta -> Tuple