AWX / SAML / OKTA ?

Matt_Barry · November 19, 2019, 3:25pm

Hello,

I’m implementing AWX and attempting to integrate single sign-on using Okta (okta.com). The SAML sign-on button redirects me to Okta correctly, but when I get bounced back I just hit the login page. It seems like the Okta side is configured correctly. When I watch the process with SAML-tracer the only outstanding errors I can see are a pair of 401 requests to e.g. /api/v2/settings/all .

My IDP configuration looks like this:

{
“okta”: {
“url”: “”,
“attr_user_permanent_id”: “urn:oid:1.3.6.1.4.1.5555.610.2.2.1.11”,
“attr_username”: “urn:oid:1.3.6.1.4.1.5555.610.2.2.1.11”,
“x509cert”: “”,
“entity_id”: “http://www.okta.com/<ENTITY_TOKEN>”
}
}

I’m wondering if there are some obvious places to look for the problem, or if anyone else out there has experience linking up with Okta as an IDP.

Thanks!

-m

Matt_Barry · November 19, 2019, 3:50pm

The request to /sso/complete/saml/ also redirects (302) to /sso/error/ (which bounces back to /#/settings/)

Matt_Barry · November 19, 2019, 4:17pm

Updated configuration:

{
“okta”: {
“url”: “…”,
“attr_user_permanent_id”: “userName”,
“attr_email”: “email”,
“attr_username”: “userName”,
“x509cert”: “…”,
“attr_first_name”: “firstName”,
“attr_last_name”: “lastName”,
“entity_id”: “…”
}
}

Topic		Replies	Views
Okta SAML setup with AWX 9.0.1 AWX Project awx	2	0	February 11, 2020
AWX integration with Okta AWX Project awx	6	3	April 15, 2021
AWX 15.0.1 and OKTA SAML AWX Project awx	0	0	June 14, 2023
Okta saml auth error social 'RelayState' Get Help awx	5	259	June 8, 2024
Ansible AWX using both LDAP and Okta SAML AWX Project awx	4	0	October 6, 2020

AWX / SAML / OKTA ?

Related topics