Skip to main content
Druva Documentation

How to Configure OKTA with Phoenix

Phoenix Editions: File:/tick.png Business File:/cross.png Enterprise File:/tick.png Elite
  • Only a Druva Cloud administrator can set up Single Sign-on. 
  • Configure Single Sign-on based on the applicable scenarios:
    • New Druva customers that is; Phoenix customers on-boarded after 02 July 2018 must refer to the instructions given in the article: Set up single sign-on on the Druva Cloud Platform Console
    • Existing Phoenix customers who have already configured Single Sign-on must continue to use the existing settings as described in this article.


This article describes the steps to configure SSO for Phoenix using the Okta.

Configure the Okta Druva App

  1. Login to the Okta console using the configured URL.
    (This will be different for everyone. Mostly it’s in the following format:
  2. Click Admin. The admin screen is displayed.
  3. Click Add Application> Create New App.
    The Create a New Application Integration window is displayed.
  4. Select the SAML 2.0 option, then click the Create button.
  5. Under General Settings tab, enter a name for the new app in the App name field.
  6. Click Next.
  7. Under the Configure SAML tab, configure the following settings as shown:
Options Inputs
Single sign on URL In this field, type:
Audience URI (SP Entity ID)

In this field, type: druva-phoenix

Note: This input is case sensitive.

Default RelayState In this field, type: Admin
Name ID format Select  EmailAddress.
Application username Select Email.
Attributes Statements (Optional): Enter the SSO token details.

In this field, type: phoenix_auth_token

Note: This input is case sensitive.

Value Copy the generated SSO token. For more information, see Generate SSO token.

Note: You can upload the encryption certificate by clicking Show Advanced Settings option. For detailed procedure, see Encryption and Signature

  1. Click Next.
  2. Under the Feedback tab, select I'm a software vendor. I'd like to integrate my app with Okta.
  3. Click Finish.

You have configured the the Okta Druva app.

Configure the SSO setting in Okta

  1. Login to the Okta console using the configured URL.
    (This will be different for everyone. Mostly it’s in the following format:
  2. Click Admin. The admin screen is displayed.
  3. Click Add Application and select the recently added Phoenix application.
    The application screen is displayed.
  4. Under the Sign-On option, click the View Setup Instructions button. The How to Configure SAML 2.0 for <application name> Application page is displayed. This page contains all the relevant information that needs to be entered on the Phoenix portal.

Note: These details will always be different as they are company specific. 

  1. Copy the Identity Provider Single Sign-On URL and X.509 Certificate details.

Note: Copy the information in a text editor tool (preferably Notepad or WordPad), before pasting it in the Phoenix Portal to avoid incorrect formatting.

Configure the single sign-on settings on Phoenix portal

To configure the single sign-on settings

  1. Log on to Phoenix Management Console.
  2. On the menu bar, click wheel.png > Settings.
  3. Click the Single Sign-On tab and under Single Sign-On Configuration, click Edit. The Single Sign-On Configuration window is displayed.
  4. Provide the appropriate information for each field.



ID Provider Login URL

Type the URL downloaded from the Okta portal. 

ID Provider Certificate Provide the content of the certificate. 
AuthRequests Signed Select this option if you want the authentication request signed. 
Want Assertion Encrypted Select this option if you want the assertion encrypted. 
  1.   Click Save