Versions Compared

Old Version 25

changes.mady.by.user Chad Fay

Saved on

compared with

New Version 28

changes.mady.by.user Chad Fay

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Panel
panelIconIdatlassian-info
panelIcon:info:
bgColor#FF8F73

This setup might fail without parameter values that are customized for your organization. Please use the Okta Administrator Dashboard to add an application and view the values that are specific for your organization.

Contents

...

Anchor
supported
supported
Supported Features

The Okta/Avigilon Alta Security SAML integration currently supports the following features:

...

For more information on the listed features, visit the Okta Glossary.

...

Anchor
configuration
configuration
Configuration Steps

On Okta:

1. Go to your Okta instance and install the Avigilon Alta app.

...

4. Log in to the Avigilon Alta Control CenterAccess system.

5. Navigate to App Marketplace, click ‘Get apps’, and select Okta:

...

7. Enter the following:

  • API URL: Copy and paste the following:

    • Sign in to the Okta Admin Dashboard to

...

    • generate this variable

...

    • .

    • Copy and paste the API URL provided.

  • API Key:

    • Enter the API Token you

    made a copy of

    • saved in step 3.

  • Check Enable Single Sign-On (SSO):

    • Check the option to enable SSO for users with portal access.

  • Namespace:

    • Make a copy of

    this

    • the Namespace value provided.

  • Allow IDP-Initiated SSO:

    • Turn on

    Allow

    • the option to allow IDP-Initiated SSO.

  • SAML SSO URL:

    • Sign in to the Okta Admin Dashboard to generate this variable.

    • Copy and paste the SAML SSO URL provided.

  • SAML Issuer:

    • Sign in to the Okta Admin Dashboard to generate this variable.

    • Copy and paste the SAML Issuer provided.

  • SAML Certificate:

    • Sign in to the Okta Admin Dashboard to generate this variable.

    • Copy and paste the SAML Certificate provided.

  • Click Save:

...

8. Go back to the Okta integration.

  • Auto-remove users Users from groups: This will Groups:

    • Enabling this feature will automatically remove users from Avigilon Alta groups if they no longer exist in the corresponding Okta groups.

  • Import Users Only import users from groups with an Avigilon Alta group mapping: from Mapped Groups:

    • When enabled, this feature

    prevents users from being imported from the identity provider if they do not

    • ensures that only users who belong to at least one identity provider group mapped to an Avigilon Alta group will be imported. This is

    typically the desired behavior

    • useful when the identity provider contains

    large numbers of

    • many users

    (

    • or non-person system accounts

    ) that will never need

    • that do not require access to Avigilon Alta-managed resources.

  • Map Okta groups to Avigilon Alta groups.

  • Click Save:

...

10. Navigate to Users > Users and check that the users were imported from Okta into Avigilon Alta.

11. Done!

...

Anchor
notes
notes
Notes

The following SAML attributes are supported:

Name

Value

firstName

user.firstName

lastName

user.lastName

email

user.email

login

user.login

id

user.id

SP-initiated SSO

1. Go to: https://control.openpath.com/login/sso

...

How do I log into the Avigilon Alta Open app with Okta SSO?

How do I sync users with Okta?

How do I enable Single Sign-On for Okta?