SAML Settings for the Okta Application - Administrator Guide - 6.9 - Cortex XSOAR - Cortex - Security Operations

Cortex XSOAR Administrator Guide

Product
Cortex XSOAR
Version
6.9
Creation date
2022-09-29
Last date published
2024-04-08
End_of_Life
EoL
Category
Administrator Guide
Abstract

SAML settings for using Okta with Cortex XSOAR.

The following tables describes the SAML settings for Okta.

General Parameters

Parameter

Value

Single sign on URL

https://<cortexxsoarURL>/saml

Audience URI (SP Entity ID)

https://<cortexxsoarURL>/saml/metadata

Default RelayState

Keep this field empty.

Name ID format

EmailAddress. The Cortex XSOAR username is the user's email address, as defined in Okta.

Application username

Okta username.

Update application user name on

Create and update

okta-gen-sett.png

Attribute Statement Parameters

Name

Name Format

Value

FirstName

Unspecified

user.firstName

LastName

Unspecified

user.lastName

Email

Unspecified

user.email

login

Unspecified

user.login

Phone

Unspecified

user.primaryPhone

okta-att.png

Group Attribute Statement parameters

Name

Name format

Filter

Name of group

memberOf

Unspecified

Equals

Name of the group you have created.

The Group Attribute Statement parameters define which groups to associate with Cortex XSOAR and which groups are to be mapped to Cortex XSOAR roles. In this example, add a group called Everyone.

okta-group.png

Note

If you are using memberOf as a group attribute statement, ensure not to use the memberOf as an attribute statement. You cannot have both single user and group user attributes.