Skip to content

Update dash-sso-apps.mdx #24472

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 2 commits into from
Aug 18, 2025
Merged

Update dash-sso-apps.mdx #24472

Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
4c5087a
Update dash-sso-apps.mdx
chris-martinelli Aug 16, 2025
6867591
Update dash-sso-apps.mdx
ranbel Aug 18, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
13 changes: 7 additions & 6 deletions src/content/docs/cloudflare-one/applications/configure-apps/dash-sso-apps.mdx
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -81,7 +81,7 @@ Configure an identity provider (IdP)-initiated single sign-on (SSO) session usin

1. In [Zero Trust](https://one.dash.cloudflare.com/), go to **Access** > **Applications** > select your **SSO App**.
2. Select **Configure** to access the application settings.
3. In the **Basic Information** section, find the **SSO Endpoint URL** and copy it. You will need the copied **SSO Endpoint URL** for your IdP setup.
3. In the **Basic Information** section, copy the **SSO Endpoint URL** and **Access Entity ID or Issuer**. You will need these values for your IdP setup.

#### Configure Okta as the IdP

Expand All @@ -90,10 +90,11 @@ Configure an identity provider (IdP)-initiated single sign-on (SSO) session usin
3. In the pop-up, select **SAML 2.0** and select **Next**.
4. Enter a name for the app and select **Next**.
5. In the **Single Sign-On URL** field, paste the **SSO Endpoint URL** [you copied earlier](/cloudflare-one/applications/configure-apps/dash-sso-apps/#prerequisites-1).
6. Set the **Name ID Format** to **EmailAddress**.
7. Set the **Application Username** to **Email**.
8. Select **Next** > **Finish** to save the integration.
9. Test the integration by going to your Okta User Dashboard, locating the new app tile, and selecting it to verify the SSO flow.
6. In the **Audience URI (SP Entity ID)** field, paste the **Access Entity ID or Issuer** [you copied earlier](/cloudflare-one/applications/configure-apps/dash-sso-apps/#prerequisites-1).
7. Set the **Name ID Format** to **EmailAddress**.
8. Set the **Application Username** to **Email**.
9. Select **Next** > **Finish** to save the integration.
10. Test the integration by going to your Okta User Dashboard, locating the new app tile, and selecting it to verify the SSO flow.

**(Optional) Enforce single IdP login with Instant Auth**

Expand Down Expand Up @@ -229,4 +230,4 @@ Before disabling SSO, make sure you have access to your Cloudflare account email
4. Under **Team domain**, select **Edit** to enter the new team name. Select **Save**.
5. In your identity provider, update your Cloudflare integration with the new team name. For example, if you are using a SAML IdP, you will need to update the Single Sign-on URL and Entity ID to `https://<new-team-name>.cloudflareaccess.com/cdn-cgi/access/callback`.
6. In Zero Trust, go to **Settings** > **Authentication**.
7. Turn on **Cloudflare dashboard SSO** to re-enable SSO.
7. Turn on **Cloudflare dashboard SSO** to re-enable SSO.
Loading