This is an example of configuring Okta.
Initial configuration:
- In the Okta admin console, navigate to Applications and search for Relativity.

- Navigate to the General tab and specify these SAML settings:

- You have now partially configured you application in Okta to set up logging in to Relativity. You must now configure the SAML provider in Relativity. These Okta values can be found under the Sign on tab.
- The Audience URI (SP Entity ID, from the previous step).
- The Identity Provider Issuer (In Okta, click View Setup Instructions on the Sign On tab).
- The X.509 Certificate (also in Setup Instructions).

Single Sign On using SAML will not work until you configure the app to trust Okta as an IdP.
Next, set up the SAML 2.0 authentication provider in Relativity:
- Log in to Relativity with system admin credentials.
- Open the Authentication Provider tab.
- Click New Authentication Provider. The Authentication Provider Information form opens.
- Enter a name for your provider.
- Select SAML2 from the Provider Type drop-down menu.

- Enter the site URL. This is the URL users enter into the browser to access this instances of Relativity.
- Enter the Audience URI (SP Entity ID) from Okta in the Audience field.
- Enter the Identity Provider Issuer from Okta in the Issuer URL with.
- Enter the X.509 certificate from in Okta in the Certificate field.
- (Optional) If you are using a specific user identifier claim that is not the default claim, enter it as the Subject Claim Type.
- Click Save.
- Note the Redirect URL on your new authentication provider.
js
You have now set up your Relativity instance to list for SAML 2.0 assertions at a given endpoint on your server (the Redirect URL).
Next, finish setting up the SAML IdP in Okta:
- Log in to Okta and navigate to the application you created earlier.
- Update the single sign-on URL to be the Redirect URL given to us by Relativity on the authentication provider you have created.

You have now configured Okta to send SAML 2.0 assertions to your Relativity instance, and Relativity is set up to verify the SAML assertions.
You must also assign Okta users to the SAML application, and then map the users to SAML login method in Relativity. When configuring the login method, you must specify the user's email in the SAML2 Subject field (if you select Email as the application username in Okta). For more information, see Managing user authentication methods.