# Okta ## Overview **Okta SAML SSO** allows your users to sign in to [VGS Dashboard](https://dashboard.verygoodsecurity.com) using your existing Okta account.\ Follow the manual to configure the *VGS* Okta application. ## Setup ### 1. Sign in to the [Okta Console](https://login.okta.com/). ### 2. Add application * In the Admin Console, go to **Applications > Applications** and click **Add Application**.

### 3. Search for the *VGS* application * In the **Search for an application** field, enter **VGS** and select **Very Good Security**.

### 4. Add the *VGS* application * Click **Add**.

### 5. Complete the fields on the **General Settings** page * Assign the **Application label** and click **Done**.

### 6. Copy *Identity Provider metadata* URL * In the **Settings** section of the **Sign On** pane navigate to **SAML 2.0** and copy the **Identity Provider metadata** URL.

### 7. Link the *VGS* application with your active organization > You need to [**activate**](broken://pages/ziyq5uSRyTB0gLpMY5tE#activating-an-organization) your organization before you proceed with custom IDP SSO setup. * Go to [VGS Dashboard > Organization settings](https://dashboard.verygoodsecurity.com) page. * Scroll down to the **SAML Settings** section. * Paste the **Identity Provider metadata** URL from the previous step in the **Metadata URL** field. * Click **Save**. * After metadata processing, you will be able to switch the **Enable SAML SSO for this organization** toggle. ### 8. Copy the *Organization ID* * Scroll up to the **General Settings** section and copy the **Organization ID** needed for the next step. ### 9. Finish *VGS* application configuration * Return to the Okta Admin Console. * In the **Settings** section of the **Sign On** pane click **Edit**.

* Scroll down to the **Advanced Sign-on Settings** section. * Paste the **Organization ID** from the previous step. * Change the **Application username format** to **Email**. * Click **Save**.

### 10. Assign users to the *VGS* application * In the **Assignments** pane click **Assign** and assign the *VGS* application to people or groups.

### 11. Now assigned users can use the *VGS* application to visit *VGS Dashboard* Once Okta is configured, the preferred path for login for your users is to use Okta. If they navigate directly to the dashboard, they will need to use the specific **Login URL** specified in the **SAML Settings** to ensure that they login via SSO

If they don't use that **Login URL**, the dashboard will log them in without using SSO and they may not be able to access your organization. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.verygoodsecurity.com/enterprise-platform/access-management/enterprise-identity-providers/okta.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.