My Account Overview
  • Account Management
    Account Management Overview Roles and Permissions – What’s New Roles and Permissions User Management Team Management Account Settings Universal Links and Your iOS App Android App Links and Your Android App
  • Support
    Support Business Hours Ticket Submission Guidelines Create and Manage Support Tickets Sailthru Maintenance Windows
    • Custom Font ManagementVerified Sending Domain
  • Single Sign-On
    • Multifactor Authentication

    Link an Okta Application to Sailthru

    This guide walks you through configuring an Okta application to enable SAML-based Single Sign-On from Okta for Sailthru. In this scenario, the Okta application is the SAML Identity Provider.

    Create a new Okta application 

    1. In Okta, click Admin.
    2. Open Applications.
    3. Click Add Application.
    4. Select Create New App.
    5. Select Web as the platform and SAML 2.0 as the sign-on method. Click Create.
    6. Specify a name identifier for the application, for example, Sailthru. Select Do not display application icon to users and Do not display application icon in the Okta Mobile app. Click Next.
    7. Decide the name of the SAML connection that will be used by Sailthru. This should be in the format of "saml-<companyname>", e.g. "saml-sailthru". In the following steps you'll insert this name in place of SAML_CONNECTION_NAME.
    8. On the SAML Settings page
      1. Specify the user's email address as the value for Application username. There are several options to do it. You can select the "Okta username" option if the user's email address is used as the Okta username. Or you can select the "Custom" option and use any Okta expressions to make the user's email address dynamic. See more details about available expressions here. Note: The value in the Application username field will be used by Sailthru to identify the authenticated user within the Sailthru platform.
      2. Enter https://login.sailthru.com/login/callback?connection=SAML_CONNECTION_NAME into the Single sign on URL field
      3. Enter urn:auth0:sailthru:SAML_CONNECTION_NAME into the Audience URI (SP Entity ID) field
      4. In the ATTRIBUTE STATEMENTS (OPTIONAL) section, add the following attributes:
        Name Value
        name user.firstName + " " + user.lastName
        given_name user.firstName
        family_name user.lastName
    1. Click Next.
    2.  On the Feedback page, select "I'm an Okta customer adding an internal app". The section expands and displays more options. Select "This is an internal app that we have created" as the App type. Click Finish.

    Assign users to the application

    1. From the Assignments tab, assign users to the application.
    2. Click Assign, then select either Assign to People or Assign to Groups.
    3. Enter the appropriate people and groups that you want to Single Sign-On into your application, and then click Assign for each.
    4. For any people that you add, verify the user-specific attributes, and then select Save and Go Back.
    5. Click Done.

    Locate configuration information

    1. Locate the Sign On tab. Click View Setup Instructions.
    2. A new browser tab launches with the information that you need:
    • Identity Provider Single Sign-On URL
    • Identity Provider Issuer
    • X.509 Certificate

    Pass configuration details to Sailthru

    Once you have completed all these steps, please contact Sailthru with the following details
    • SAML connection name
    • Identity Provider Single Sign-On URL
    • X.509 Certificate 
    Top