The Okta Identity Cloud provides secure identity management with Single Sign-On, Multi-factor Authentication, Lifecycle Management (Provisioning), and more.
Okta connects any person with any application on any device. It's an enterprise-grade, identity management service, built for the cloud, but compatible with many on-premises applications. With Okta, IT can manage any employee's access to any application or device.
How to set up SSO on QuestionPro using Okta?
Follow the steps below to connect Okta with QuestionPro using SAML 2.0:
Login to your Okta account and create a new app by clicking on Create New App under Applications tab
Select the platform as Web and click on SAML 2.0 radio button, Click on Create
Now Enter the name of your app and upload the Logo under General Settings of the app, then click on Next
To get the ACS URL go to your QuestionPro account>> User Profile Icon>> Global Settings. You will get the ACS URL under SSO Authentication. Copy the URL for future use
Now under Configure SAML, paste the ACS URL under Single Sign On and Audience URL (SP identity). Change the Name ID Format as “EmailAddress” and Application username as “Email”
Add an attribute with name “emailAddress” and select the value as “user.email” from the dropdown menu, Click on Next
Select the first radio button (I’m Okta customer adding an internal app) under Feedback tab. Then check the first checkbox (This is an internal app that we have created) and click on Finish
Now your app will be created and you will be able to see the Sign on tab, where you have to click on the View Setup Instructions
Here you will get the XML assertion along with the certificate, Copy and paste this XML and save it in notepad file with .xml extension
Upload this XML file on your QuestionPro account under My Account>>Global Settings>>Login Authentication, Click on Save Changes
Now your Okta account is connected with your QuestionPro account, Assign the users to your app by clicking on “Assign to users” under Applications tab in your Okta account
In the Assign to Users pop-up, click on the Assign button near user’s name, and then edit the Username of the user and click on Save and Go Back
When you click on the My Applications button you can see your app’s icon in the Okta dashboard, and when you click on the icon you will be redirected to your QuestionPro account, where you will just need to login into your Okta account.
Can we map new users to a specific Business Unit/ Team?
Yes, It is possible to map new users to a specific Business Unit/ Team. You can pass an attribute named "teamName" in your SAML assertion containing the Business Unit Name / Team Name from your QuestionPro account which will add new users under that specific Business Unit/ Team. In the following example shown in the screenshot we have used the "Department" field of the user's profile to store the Team Name for the user which will be passed in the SAML assertion:
From where do I get the Business Unit Name/ Team Name from my QuestionPro account?
To get the Business Unit Name/ Team Name from your QuestionPro account, please follow the steps below:
Go to User Profile >> Organization >> Teams
Create a new team if required or copy the Team name of the existing Team("New Team SSO" in this case)
You can use the Team Name in any field of the user profile under your Okta account. To access the user's profile in your Okta account go to People >> User >> Profile
Here you can edit the user's profile.
QuestionPro SAML app on Okta
Some of our employees are moved from the Research department to the Management department, how should we update their department in our QuestionPro account through our SSO connection?
If there's is any change in the team/ department of the existing user then you can simply update the user's profile details at your IDP's side of the connection. Now whenever the user logs in to their QuestionPro account their team will be updated automatically.
This feature is available with the following license :