How to Setup UniversitySite with OKTA SSO - SAML 2.0 Classic interface

If you are considering switching to this SSO solution instead of the out of the box UniversitySite SSO, please contact  Lawren Finley to find out if it's included with your subscription.

If you are looking for the current interface you can find those instructions here
How to configure OKTA SAML for UniversitySite SSO - Current GUI - UniversitySite

You can test your configuration without interrupting the existing login experience for your production users by following these instructions 
https://docs.universitysite.com/article/579-how-to-test-saml-configuration-without-interrupting-production

  1. First, you must go to the “Login Settings” page in UniversitySite. (Make sure you are in InstructorSite. If not, click on the left-most dropdown list at the top of the page and click on “InstructorSite”). Your page in UniversitySite should look like this now.
  2. Now, you will drop down the menu under your name at the top right-most drop-down and click on “Global Settings”.
  3. Now you will see the “Global Settings” page, scroll to the bottom of this page and click on “Login Settings”.
  4. You will now see a page in UniversitySite that looks like this. Please click on the “Use SAML” button.
  5. IMPORTANT: Switch to the classic UI in the OKTA control panel before proceeding
  6. Now login to Okta as an administrator and click on the Admin button in your Okta control panel. 
  7. Now that you are in the admin dashboard, click on “Add Applications”.
  8. Now, on the “Add Application” page, type in “UniversitySite” as shown and then click on the Add button.
  9. You will see this now. First, type in your subdomain name (you will get this name from the UniversitySite support team). In this example, “okta” is the subdomain name. Next, click the Next button.
  10. Now, you will see this page where you can authorize people to use UniversitySite. You can do this now or just click the Next button.
  11. You have completed the initial setup part of adding UniversitySite as an application. Click the Done button.
  12. Now you should see a page like this. You will need to click on the “Sign On” tab and then click on the “View Setup Instructions” button.
  13. Now you will see a page like this that will give you the additional steps required to setup your UniversitySite application in Okta and you will be given the steps required to setup Okta in UniversitySite. (if you want to preview these steps prior to setting up UniversitySite in Okta, here is a link to a non-specific setup page: http://saml-doc.okta.com/SAML_Docs/How-to-Configure-SAML-2.0-for-UniversitySite.html). Please follow all the instructions shown on this page.

Dealing with Name Changes

You can make UniversitySite authenticate against the employeeID or some other field instead of Active Directory userName or e-mail address.  First, change OKTA to send e-mail address instead of userName.  Update UniversitySite's user sync to push employeeID into UniversitySite’s networkAlias field.  After that sync has been performed, change OKTA to send employeeID.

This works because the identifying information sent from OKTA, translates to UniversitySite user profiles by matching on e-mail address or networkAlias.

Still need help? Contact Us Contact Us