SSO setup - Okta (SAML2.0)

Splashtop now supports logging in to your Gateway and Splashtop Business app using the credentials created by your SAML 2.0 identity providers. Please follow the below instructions to add the Splashtop app to your Okta console.

Add Splashtop app on the Okta console

1. Log on your Okta console using your Okta account.

2. Click Admin to go to the admin console.

3. On the left sidebar, go to Applications -> Applications, then click Create App integration to configure a new application.


4. Check SAML 2.0 as Sign-in method, then click Next.

5. Under General Settings, enter App name, then click Next.

6. Under Configure SAML, enter Single sign-on URL and Audience URI (SP Entity ID), then click Next.

  • Audience URI (SP Entity ID): onpremise.splashtop.com (Copy Entity ID in Add SSO Method from your Gateway).
  • Single sign-on URL: https://[Gateway Address]/api/saml/acs (Copy Assertion consumer service URL in Add SSO Method from your Gateway).

7. Under Feedback, check I'm an Okta customer adding an internal app, then click Finish.

8. Open the application, under Sign On, then click Copy or View SAML setup instructions to get Okta metadata.


Assign users to the Splashtop app

Go to the created app, Under Assignments, click Assign / Assign to People (Group) to assign users who will use SSO.

Apply for an SSO method from your Gateway

1. Go to your Gateway/management/Team Settings/Authentication/Single Sign-On tab to click Add SSO method. Select Okta as the IDP Type.

2 Check Add manually, then click enter the metadata that was copied from your Okta console. 

3. Alternatively, Gateway also supports importing IDP metadata from URL. Check Import from URL, paste the Metadata URL that was copied from Okta, then click Import.

1 out of 1 found this helpful