---
title: "Setting up SSO using Okta SAML"
slug: "setting-up-sso-using-okta-saml"
updated: 2025-02-10T20:19:50Z
published: 2025-02-10T20:19:50Z
excludeFromSearch: true
excludeFromExternalSearch: true
---

> ## Documentation Index
> Fetch the complete documentation index at: https://help.tritondigital.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Setting up SSO using Okta SAML

This article describes how to set up an Okta application to create a SAML connection with Triton Digital’s authentication service in order to allow single sign-on (SSO) to Triton Digital applications.

## Configuration Variable

This configuration variable is used throughout the setup procedure.

- **Connection name**: `&lt;connection-name&gt;` = `&lt;customer-name&gt;-saml` E.g., for the publisher Blork Media, the `&lt;connection-name&gt;` would be `blork-media-saml` *This variable will be provided to you by Triton Digital*.

## Okta SAML Setup Procedure

1. Log in to your Okta admin console.
2. Go to **Applications** >**Applications**.
3. Click **Create App Integration**.
4. Select **SAML 2.0** as the Sign-in method.
5. For the **Application Label**, enter `Triton Digital SAML`
6. Set the **Single Sign On**, **Recipient URL**, and **Destination URL** to: `https://id.tritondigital.com/login/callback?connection=&lt;connection-name&gt;` …where `&lt;connection-name&gt;` is the variable described [above](/docs/setting-up-sso-using-okta-saml#configuration-variable).
7. Under Audience Restriction, set up the identifier as per this template: `urn:auth0:triton-digital-prod:&lt;connection-name&gt;` …where `&lt;connection-name&gt;` is the variable described [above](/docs/setting-up-sso-using-okta-saml#configuration-variable).
8. In the **Name ID Format** drop-down menu, select `EmailAddress`
9. Complete the form.
10. Generate and download a SAML signing certificate for the new application.
11. Make a note of the Metadata URL.
12. (Optional) Assign users to the application.

## Outputs to Triton Digital

The following should be provided to Triton Digital after the Okta SAML application is created:

- The application’s SAML certificate.
- The Metadata URL.
- The email domain(s) associated with the account. e.g.: (@blorkmedia.com)