Table of Contents

SAML Integration via Okta

Billy Dowell Updated by Billy Dowell

SAML integration via Okta

This article outlines how to configure your account to authenticate via a SAML provider such as Okta.

Only an option on Enterprise plans.
Work is still happening to have Great Question listed in the Okta Catalog and published to the OIN. For the time being, the application will have to be created manually.

Register application in Okta

Create application in Okta
  1. In Okta, navigate to the Applications tab and click Applications.
  2. Click Add application > Create new app.
  3. In the dialog, select SAML 2.0 as the sign on method.
  4. Click Create.
Create application in Okta
Okta Application Settings
  1. In the General Settings, enter the application name (Great Question) and add an optional logo.
  2. Click Next.
  3. On the SAML Settings page:
    1. Add the following URL for the Single sign on URL: https://greatquestion.co/users/saml/auth
    2. Add the following URL for the Audience URI: https://greatquestion.co/users/saml/metadata
  4. For Name ID format, select EmailAddress.
  5. For Application username, select Email.
  6. Click Next.
  7. Click Finish.
Okta application settings
Attribute mapping
  1. Map first_name to user.firstName.
  2. Map last_name to user.lastName.
  3. Map email to user.email.
Attribute mapping

Setting up application in Great Question

Obtain credentials for Great Question from Okta
  • Once the application is created, complete the following steps:
  1. From the Great Question application in Okta, click Sign on.
  2. From here, click View Setup Instructions.
  3. These are the credentials you need:
Obtain credentials for Great Question from Okta
Add credentials to Great Question
  1. Navigate to greatquestion.co, if not already there.
  2. Click on your name/profile image in the bottom left corner.
  3. Click on Team, and then Settings.
  4. In the authentication form:
    1. Toggle on SAML Authentication.
    2. Add Identity Provider Single Sign-On URL to Idp sso target url.
    3. Add Identity Provider Issuer to Idp entity.
    4. Add X.509 Certificate: to Idp cert.
  5. Click Update Account.
Add credentials to Great Question

SAML is now set up on your Great Question account. 🙌

Signing in via SAML

  • Any user with access to Great Question in your Okta will automatically be able to sign in from their Okta profile. By default, they will be provisioned with a free observer account.
  • Users that already have accounts on Great Question can connect Okta and sign in via https://greatquestion.co/sso.

The GQ logo below can be downloaded for your integration.

Great Question Logo.png

Have Questions?

Please reach out to us in the chat or at [email protected]!

How did we do?

Zapier Integration (Beta)

SAML Integration via Azure AD

Contact