Document toolboxDocument toolbox

Adding a Chiclet for IdP-initiated SSO (OKTA)

Owned by Shirly Tsang
Last updated: Sept 06, 2024 by Gary Leicht
2 min read

You can add a chiclet to your users' Okta IdP dashboard, so they can get authenticated and access a specific web page without entering login credentials. To add the chiclet to the dashboard, you first set the default relay state URL in the Okta SAML application, create a bookmark application, and then assign the bookmark application to applicable users and groups. These users can then use the bookmark chiclet on their IdP dashboard to get authenticated automatically while accessing the web page.

To configure the IdP-initiated SSO chiclet, complete the following:

  1. Log in to your Okta IdP instance as an admin.
  2. Click Admin to access the Admin Console, and then click Applications.
  3. Go to your SAML application -> General tab, select Edit for App Settings, and complete the following:
    1. Application visibility: Select the Do not display app icon to users and Do not display app icon in the Okta Mobile App check boxes to ensure that the SAML application chiclet is not displayed for users who do not have the privileges to manage applications on your IdP.
    2. Click save.
  4. Go to your SAML application -> General tab, select Edit for SAML Settings, and complete the following:
    1. Default Relay State: Enter the URL of the desired landing page to which you want to redirect your users after a successful SSO authentication.
    2. Click save.
  5. Go to your SAML application -> General tab, scroll to the bottom to locate the App Embed Link section, and complete the following:
    1. EMBED LINK: Copy the link in the textbox and paste it into your notepad. You will need this later.
  6. Go to the Applications section of your Okta instance, click New Application, and complete the following to create a bookmark application:
    1. In the Search bar: Enter Bookmark App.
    2. Select Bookmark App from the list of results.
    3. Click Add.
  7. On the App Settings page, complete the following:
    1. Application label: Enter the name of your bookmark application. Use a name that reflects the web page for your bookmark application.
    2. URL: Paste the URL you copied from the App Embed Link section into the textbox.
    3. Click Save.
  8. On the App Settings page, click the Assignments tab, and complete the following to assign the bookmark application to all required users & groups:
    1. Check users to ensure that they are assigned to the new application
    2. Check groups to ensure that they are assigned to the new application.
  9. Log out of Okta.
  10. To test the chiclet, log in as one of the users to whom you have assigned the new bookmark application.
  11. You should see the bookmark chiclet on the dashboard. The following is an example:
  12. Click the chiclet. It should direct you to the desired web page (via the URL you entered for the Relay State URL), and you will be authenticated automatically.