Create a new SAML app in the Okta Admin console.

Note: If you are using the Okta developer dashboard, switch to the Classic UI first. If you see a <> Developer prompt in the top left, click it and select Classic UI to switch to the Classic UI. Use the Classic UI for all the tasks in this document.

Procedure

  1. Log in to your Okta org and navigate to the Admin user interface.
  2. Navigate to Applications > Applications.
  3. Click Add Application.
  4. Click Create New App.
  5. Select Web as the Platform and SAML 2.0 as the Sign on method.
  6. Click Create.
  7. Enter a name for the app, for example, Workspace ONE SAML.
  8. Click Next.
  9. Enter the following information.
    Option Description
    Single sign on URL Enter the AssertionConsumerService URL.

    This is the URL retrieved from the Workspace ONE SAML metadata in Start Creating a New Identity Provider in Workspace ONE Access. For example:

    https://tenant.vmwareidentity.com/SAAS/auth/saml/response

    Audience URI (SP Entity ID): Enter the entityID.

    This is the entityID retrieved from the Workspace ONE SAML metadata in Start Creating a New Identity Provider in Workspace ONE Access. For example:

    https://tenant.vmwareidentity.com/SAAS/API/1.0/GET/metadata/sp.xml

    Name ID format Select Unspecified.
    Application username Select Okta username.

    The application username mapping is defined in the next section. Okta username maps to User Principal Name(UPN) in Workspace ONE.


    create SAML app in Okta

  10. Click Next.
  11. Select I'm an Okta customer adding an internal app.
  12. Check the This is an internal app that we have created box.
  13. Click Finish.
  14. From the Settings section of the Sign On menu for the new application, locate and copy the URL for the Identity Provider metadata.

    create saml app in Okta