Using Okta SSO with TeleRetro


A guide for how to set up Okta SSO for use with TeleRetro

This step-by-step guide explains how to set up Single Sign-On in TeleRetro with Okta as your SAML 2.0 Identity Provider (IDP).

Okta SSO is one of the most popular Single Sign-On providers on the market. With Okta your organization can automatically provision and control access to software from one place.

TeleRetro is fully compatible with Okta, and is available through our Enterprise plan. Write to us at sales@teleretro.com to learn more.

What you'll need

  • TeleRetro Enterprise plan
  • Okta Admin account

What we'll cover

Configuring Okta as a SAML identity provider by completing the following steps:

  1. Create a new SAML integration in Okta
  2. Complete the SAML connection in TeleRetro
  3. Test the new connection

1. Create new SAML integration in Okta

In this step you will create and configure a new TeleRetro SAML integration in Okta.

Create a new SAML 2.0 Integration

  1. In the Okta Admin Console, go to Applications > Applications > Create App Integration.
  2. Select SAML 2.0 as the Sign-in method.Create a new app integration modal in Okta
  3. Click Next.

Update the General Settings

  1. In the next screen, set the App Name to TeleRetro.

  2. Then click the image below to download the TeleRetro logo, and upload it as the App Logo.

    TeleRetro Logo
  3. Your configuration should now look like this:

    Okta integration settings with TeleRetro app name and logo
  4. Click Next.

Update the SAML settings

In this step update the SAML settings to look as follows: Okta SAML settings example

To do so, you will need:

  1. Single sign on URL: TeleRetro will provide you with an ACS URL to paste into this field.
    Make sure that 'Use this for Recipient URL and Destination URL' is checked.
  2. Audience URI (SP Entity ID): TeleRetro will provide you with an SP Entity ID to paste into this field.
  3. Name ID format: select EmailAddress.
  4. Application username: select Email prefix.

In the Attribute Statements section, add the following entries:

  1. email - user.email
  2. given_name - user.firstName
  3. family_name - user.lastName

It should look like this:

Underneath View Setup Instruction, right click on the blue Identity Provider metadata text and copy the URL. You will need to provide this link to TeleRetro in the next step.

2. Complete the SAML connection in TeleRetro

Provide the Identity Provider metadata link to the TeleRetro support team. We will use this link to complete the SSO configuration.

Well done! Now grab a cup of tea 🍵 or coffee ☕ and we will send you a confirmation once the SSO configuration is complete.

3. Test the new connection

Once all previous steps are completed, you are now ready to test your new SSO connection.

  1. Inside Okta, find the new TeleRetro app and assign it to users. See instructions from Okta for information about how to do this.
  2. Open the Okta 'My apps' page as user, launch the TeleRetro app to test that you are able to successfully sign into TeleRetro using Okta.

If you have any trouble, feel free to reach out to support@teleretro.com where we will be happy to help you.

Get started

Experience a better retro

Create a retro in seconds & see for yourself.