Versions Compared

Old Version 1

changes.mady.by.user Eric Schullek (Unlicensed)

Saved on

compared with

New Version 2

changes.mady.by.user Eric Schullek (Unlicensed)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

  1. Contact Litera Devops before starting your 2FA authentication project. There are steps they need to perform first. You can also reach to support@litera.com to get their contact info.

Items to send to Litera

  1. Identity Provider metadata hyperlink in Step Get the IDP Metadata

Steps

Create a SAML app in Okta

...

  1. On the Create SAML Integration page, under General Settings, enter a name for your app.

  2. Choose Next.

  3. Under GENERAL, for Single sign on URL, enter https://yourDomainPrefix.auth.region.amazoncognito.com/saml2/idpresponse.
    NOTE: Replace yourDomainPrefix and region with the values for your user pool

  4. For Audience URI (SP Entity ID), enter urn:amazon:cognito:sp:yourUserPoolId.
    NOTE: Replace yourUserPoolId with your Amazon Cognito user pool ID.

  5. Leave Name ID format as Unspecified

  6. Set Application username as Email

  7. Under ATTRIBUTE STATEMENTS (OPTIONAL) set the following (set the Name format as URI reference for all):

Name

Value

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

user.email

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname

user.firstName

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname

user.lastName

  1. Click Next and Click Finish

...

  1. On the Sign On tab for your Okta app, find the Identity Provider metadata hyperlink. Right-click the hyperlink, and then copy the URL and send the URL over to us:Litera Devops.

...

 

Info

This is the hyperlink metadata that the DevOps team should add on the Cognito User pool step.

...