You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: src/content/docs/cloudflare-one/applications/configure-apps/dash-sso-apps.mdx
+7-6Lines changed: 7 additions & 6 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -81,7 +81,7 @@ Configure an identity provider (IdP)-initiated single sign-on (SSO) session usin
81
81
82
82
1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **Access** > **Applications** > select your **SSO App**.
83
83
2. Select **Configure** to access the application settings.
84
-
3. In the **Basic Information** section, find the **SSO Endpoint URL** and copy it. You will need the copied **SSO Endpoint URL** for your IdP setup.
84
+
3. In the **Basic Information** section, copy the **SSO Endpoint URL** and **Access Entity ID or Issuer**. You will need these values for your IdP setup.
85
85
86
86
#### Configure Okta as the IdP
87
87
@@ -90,10 +90,11 @@ Configure an identity provider (IdP)-initiated single sign-on (SSO) session usin
90
90
3. In the pop-up, select **SAML 2.0** and select **Next**.
91
91
4. Enter a name for the app and select **Next**.
92
92
5. In the **Single Sign-On URL** field, paste the **SSO Endpoint URL**[you copied earlier](/cloudflare-one/applications/configure-apps/dash-sso-apps/#prerequisites-1).
93
-
6. Set the **Name ID Format** to **EmailAddress**.
94
-
7. Set the **Application Username** to **Email**.
95
-
8. Select **Next** > **Finish** to save the integration.
96
-
9. Test the integration by going to your Okta User Dashboard, locating the new app tile, and selecting it to verify the SSO flow.
93
+
6. In the **Audience URI (SP Entity ID)** field, paste the **Access Entity ID or Issuer**[you copied earlier](/cloudflare-one/applications/configure-apps/dash-sso-apps/#prerequisites-1).
94
+
7. Set the **Name ID Format** to **EmailAddress**.
95
+
8. Set the **Application Username** to **Email**.
96
+
9. Select **Next** > **Finish** to save the integration.
97
+
10. Test the integration by going to your Okta User Dashboard, locating the new app tile, and selecting it to verify the SSO flow.
97
98
98
99
**(Optional) Enforce single IdP login with Instant Auth**
99
100
@@ -229,4 +230,4 @@ Before disabling SSO, make sure you have access to your Cloudflare account email
229
230
4. Under **Team domain**, select **Edit** to enter the new team name. Select **Save**.
230
231
5. In your identity provider, update your Cloudflare integration with the new team name. For example, if you are using a SAML IdP, you will need to update the Single Sign-on URL and Entity ID to `https://<new-team-name>.cloudflareaccess.com/cdn-cgi/access/callback`.
231
232
6. In Zero Trust, go to **Settings** > **Authentication**.
232
-
7. Turn on **Cloudflare dashboard SSO** to re-enable SSO.
233
+
7. Turn on **Cloudflare dashboard SSO** to re-enable SSO.
0 commit comments