Use an Identity Management Software (SSO Sign-In) to Log into SearchUnify

Organizations using identity management software can log into SearchUnify from their platform. This article explains the process for Okta. The process is divided into two parts: 

  1. Create an app in Okta
  2. Enter app details on the SSO Sign-in screen in SearchUnify

PREREQUISITES.

Keep a security certificate, which ends in .pem, handy. Contact SearchUnify to obtain it.

Create an App in Okta

  1. Log into Okta and open Add Applications.

  2. Click Create New App.

  3. Select Web in the Platform dropdown, check SAML 2.0 in Sign on method and click Create.

  4. Enter SearchUnify in the App name field and click Next. Uploading an app logo is not mandatory, but recommended. App Visibility settings will vary from organization to organization. They can be ignored for a minimal installation.

  5. On the SAML Settings screen, enter the following details and click Show advanced settings.
    • Single sign on URL: {{base URL}}/saml/hostedLogin (for search users) or {{base URL}}/saml/auth (for admin users)
    • Use this for Recipient URL and Destination URL: Checked.
    • Audience URI (SP Entity ID): {[base URL}}
    • Name ID format: Unspecified
    • Application username: Okta username

  6. Scroll down a little to find Enable single logout. Three new fields will appear when you check Allow application to initiate Single Logout. Enter {{base URL}}/saml/hostedLogout (for search users) or {{base URL}}/saml/logout (for admin users) in Single logout URL. Scroll down and click Next.

  7. In the Signature Certificate field, upload the security certificate received from SearchUnify. The next two fields (Authentication context class and Honor force authentication) will be populated if the upload was successful.

  8. Scroll down and click Next.

  9. Check an option in Are you a customer or partner? and click Finish.

  10. You will land on the SearchUnify app screen, where you can click View Setup Instructions.

The app creation was successful if you can see a similar screen.

Enter Details on the SSO Sign-in Screen

  1. Open Manage Users using left navigation.

  2. Move to SSO Sign in.

  3. Enter the details which you found after clicking View Setup Instructions.
    • Idp Display Name:  Enter any name of your choice.
    • Idp Identifier: Enter any name of your choice.
    • Idp Entity Id: Identify Provider Issue
    • SAML SSO Login URL: Identity Provider Single Sign-On URL
    • X.509 Certificate: X.509 Certificate
    • Saml Logout Url: Identity Provider Single Logout URL

  4. Click Save.

Your Okta users can now log into SearchUnify. Each user who logs in with Okta is added to the Hosted Search Users list. For details, go to Hosted Search Users: View Okta Users Logging into SearchUnify

Last updatedFriday, November 27, 2020