Skip to main content
Best Answer

Extended Enterprise and Multiple SAML SSO

  • December 4, 2023
  • 4 replies
  • 271 views
gordon.cooke
Contributor II
Forum|alt.badge.img

Hi All,
 

We are leveraging Extended Enterprise following a business acquisition where the new unit needs its own branding and SSO. We have Azure SAML authentication in place for our root users, but the new unit need to connect via OKTA.

Possible stupid question.

We were hoping to avoid the setup of custom domains and all that entails and I was wondering if it is possible to add a SAML connection (OKTA) to our EE client when The client is a subfolder of the main domain.

Any and all advice appreciated.

Cheers,

Gordon

 

Best answer by Sébastien Arbour

No worries! If you go within the settings for the Extended Enterprise, you can see “SAML 2.0 - Settings” on the left menu. You can then tick the box “Enable custom settings for this client” and that should work. You need to have the SAML app enabled, but that should already be the case.

Let me know if that worked! 😊

4 replies

S
Helper II
Forum|alt.badge.img

Hi @gordon.cooke ,

Let me start by saying that this is definitely not a stupid question. 😊

I’ve tested and I was able to set up a SAML connection with a subfolder EE on our sandbox using MS Entra. We are not working with Okta for now, but I think it should work too. If you have a sandbox, the best way would be to try it there first. You can then make some adjustments if needed.

Good luck!
Sébastien

gordon.cooke
Contributor II
Forum|alt.badge.img
  • gordon.cooke
  • Author
  • Contributor II
  • December 5, 2023

Sébastien,
Thank you for the response and the encouragement.

I have a further question and I refer back to the “stupid question” statement.

How do you enter the second set of SAML connection criteria? Even when I clear my cache and login to the sub-folder client I still see my “master” SAML connection info and any changes I make to the settings are reflected on the login pages for both the main and the sub-folder clients.

Again, any pointers are appreciated.
Gordon 
 

S
Helper II
Forum|alt.badge.img

No worries! If you go within the settings for the Extended Enterprise, you can see “SAML 2.0 - Settings” on the left menu. You can then tick the box “Enable custom settings for this client” and that should work. You need to have the SAML app enabled, but that should already be the case.

Let me know if that worked! 😊

JKolodner
gordon.cooke
Contributor II
Forum|alt.badge.img
  • gordon.cooke
  • Author
  • Contributor II
  • December 12, 2023

Sebastien, thanks for the help - I had gotten so close I could not see it for looking at it. 
Much appreciated.

Terms & ConditionsCookie settingsAccessibility statement