Skip to main content
Druva Documentation

How to Configure inSync-GovCloud SSO for users using Okta as IdP?

This article applies to inSync GovCloud (https://govcloud.druva.com)

Configure inSync-GovCloud SSO using Okta as IdP

This configuration is performed the following order:

  1. Configure the app for inSync GovCloud in Okta
  2. Configure settings in inSync-GovCloud to use Okta as IdP
  3. Enable SAML in Druva inSync Cloud

Configure the app for inSync GovCloud in Okta

  1.  Login to the Okta console using the configured URL. (This is different for everyone. Mostly, the link looks like: https://company-configured-name.okta.com)
  2. Click Admin.  The admin screen is displayed.
  3. Click Add Application > Create New App . The Create a New Application Integration window is displayed.
  4. Select the SAML 2.0 option, then click Create.
  5. Under the General Settings tab, enter a name for the new app in the App name field. For example - Druva inSync-GovCloud.
  6. Upload a logo for the app (Optional) and click Next.
  7. Under the Configure SAML tab, configure the settings as shown below:
    Single sign on URL: https://govcloud.druva.com/wrsaml/consume
    Audience URI (SP Entity ID): druva-govcloud
    Default RelayState: <Leave blank>
    Name ID format: Select EmailAddress from the drop-down
    Application username: Select Email from the drop-down
  8. Under Attribute Statement, enter values as shown below:
    Name: inSync_auth_token
    Value: Copy the token from inSync-GovCloud the inSync Management Console} and paste it here. (See Generate SSO token)

    SAMLSetting.png
  9. Click  Next when asked Are you a customer or partner?, select I'm a software vendor. I'd like to integrate my app with Okta .
  10. Click Finish.
  11. Click on View Setup Instructions on the next screen and a new page opens.
  12. Copy the values for Identity Provider Single Sign-On URL and X.509 Certificate to a notepad and close the page. The copied values need to be used later in the procedure.
  13. Click the Assignments tab in the SSO application that you created and assign the People/Groups according to your requirements.

Configure settings in inSync-GovCloud to use Okta as IdP

  1. Open https://govcloud.druva.com/admin/
  2. Login using the admin credentials
  3. Click Settings > Single Sign-On tab.
  4. Click Edit under Single sign-on Configuration .
  5. Enter the values copied earlier to the notepad from Okta page as shown below:
    Identity Provider Single Sign-On URL: <ID provider login URL>
    X.509 Certificate: <ID provider certificate>

    SSOSettingWindow.png

Enable SAML in Druva inSync Cloud

Enable Single Sign-On for the desired users from the inSync Management Console.  This can be done at the profile level. Hence, it is necessary to assign the users with a profile enabled with the SSO instead of inSync Password or Active Directory. 

  1. Login to the inSync Management Console.
  2. Go to Manage > Profiles.
  3. Click Backup Policies and click Edit.

    EditProfileWindow.png
  4. Under Access policies set Log-in using to Single Sign-on.
  5. Click Save.
  • Was this article helpful?