Skip to main content

 

Druva Documentation

How to Configure inSync-GovCloud SSO for Admins using Okta as IdP?

This article applies to inSync GovCloud (https://govcloud.druva.com).

Configure inSync GovCloud SSO for admins using Okta as IdP

This configuration is performed the following order:

  1. Configure the app for inSync GovCloud in Okta
  2. Configure settings in inSync GovCloud to use Okta as IdP
  3. Enable SSO for administrators on inSync Cloud

Configure the app for inSync GovCloud in Okta

  1.  Login to the Okta console using the configured URL. (This is different for everyone. Mostly, the link looks like: https://company-configured-name.okta.com)
  2. Click Admin.  The admin screen is displayed.
  3. Click Add Application > Create New App . The Create a New Application Integration window is displayed.
  4. Select the SAML 2.0 option, then click Create.
  5. Under the General Settings tab, enter a name for the new app in the App name field. For example - Druva inSync-GovCloud.
  6. Upload a logo for the app (Optional) and click Next.
  7. Under the Configure SAML tab, configure the settings as shown below:
    Single sign on URL: https://govcloud.druva.com/wrsaml/consume
    Audience URI (SP Entity ID): druva-govcloud
    Default RelayState: <Leave blank>
    Name ID format: Select EmailAddress from the drop-down
    Application username: Select Email from the drop-down
  8. Under Attribute Statement, enter values as shown below:
    Name: inSync_auth_token
    Value: Copy the token from inSync-GovCloud the inSync Management Console} and paste it here. (See Generate SSO token)

    SAMLSetting.png
  9. Click  Next when asked Are you a customer or partner?, select I'm a software vendor. I'd like to integrate my app with Okta .
  10. Click Finish.
  11. Click on View Setup Instructions on the next screen and a new page opens.
  12. Copy the values for Identity Provider Single Sign-On URL and X.509 Certificate to a notepad and close the page. The copied values need to be used later in the procedure.
  13. Click the Assignments tab in the SSO application that you created and assign the People/Groups according to your requirements.

Configure settings in inSync-GovCloud to use Okta as IdP

  1. Open https://govcloud.druva.com/admin/
  2. Login using the admin credentials
  3. Click Settings > Single Sign-On tab.
  4. Click Edit under Single sign-on Configuration .
  5. Enter the values copied earlier to the notepad from Okta page as shown below:
    Identity Provider Single Sign-On URL: <ID provider login URL>
    X.509 Certificate: <ID provider certificate>

    SSOSettingWindow.png

Enable SSO for administrators on inSync Cloud

  1. Login to the inSync Management Console and click Settings.
  2. Open the Single Sign-On tab and click Edit under inSync Configuration. The Single Sign-On Settings window is displayed.
  3. Select Enable single sign-on for administrators.
  4. Click Save .

inSyncConfiguration.png 

The administrator who enables Single Sign-On for administrators becomes the Failover Administrator. A Failover Administrator can use both Single Sign-On and administrator credentials to access the inSync Management Console. This is useful to gain access to the console to resolve configuration issues.

  • Was this article helpful?