Skip to content

Configuring an Identity Provider (IdP)

Once you've set up your Active Directory Federation Services (AD FS) and obtained the IdP metadata, you can configure your IdP using SAML.

An Identity Provider (IdP) is a system entity that you create in Managed Services. When the IdP is created, you generate XML metadata that describes the IdP. This metadata needs to be a saved to a file that is later uploaded to the AD FS server. This acts as a fingerprint of the token-signing certificate that is installed in your AD FS instance.

The following sections cover these procedures:

  1. Creating an IdP
  2. Updating your IdP
  3. Deactivating any unwanted IdPs

  4. Reactivating any IdPs

  5. Adding an Identity Provider (IdP)
    An Identity Provider (IdP) is a trusted server that provides identity information to other servers.

  6. Updating an Identity Provider (IdP)
    You can update the XML metadata for an ID provider from the ADMIN panel.
  7. Deactivating an Identity Provider (IdP)
    You can deactivate an identity provider from the ADMIN panel.
  8. Reactivating an Identity Provider (IdP)
    You can reactivate a deactivated identity provider from the ADMIN panel.
  9. Configuring Identity Provider (IdP) Metadata
    This section describes how to configure the Metadata for your Managed Services Portal.
  10. Verifying a New Okta Application
    Once you've successfully created and configured your SAML application, you should see the application appear in your Okta homepage.

Parent topic:Single Sign-on Using AD FS