Step 1 - Setup a new application for the Web and Select SAML 2.0
Step 2 - Name the application something like Kalo
Step 3 - Define the core set of endpoints issued that reference the correct Kalo team ( don't forget the trailing slashes! )
- Single sign on URL: https://api.kalohq.com/users/saml2/<KALO_TEAM_ID>/team_access_acs/
- Audience URI (SP Entity ID): https://api.kalohq.test/teams/saml2/<KALO_TEAM_ID>/team_access_metadata/
- Name ID format: EmailAddress
Name: User.email, Name Format: Unspecified, Value: user.email
Name: User.FirstName, Name Format: Unspecified, Value: user.firstName
Name: User.LastName, Name Format: Unspecified, Value: user.lastName
Step 4 - Select the option, you are an Okta customers setting up an internal application.
Step 5 - View the Okta generated configuration IDP information needed by Kalo to establish trust between Okta and Kalo.
Click the View Setup Instructions to see the results below and send the three independent values or IDP Metadata to Kalo to configure for the appropriate team.