Configure SingleStore SSO using Okta

Overview

These instructions describe how to configure single sign-on (SSO) for Okta for use with SingleStore Managed Service. To log into SingleStore, go to http://portal.singlestore.com.

Note: You may click on image to display its full size.

Configure Okta

  1. Navigate to the Okta admin console.

    sso-okta-01.png
  2. In the Okta admin console, click Applications in the left nav and then click the inner Applications.

    sso-okta-02.png
  3. Click Create App Integration.

    sso-okta-03.png
  4. Select the SAML 2.0 radio button and click Next.

    sso-okta-04.png
  5. On the Create SAML Integration form:

    1. In the App name field, enter the name of the application (SingleStore).

    2. In the App logo field, download and apply the following image: singlestore_icon.png

      To save the full-size image, right click on this SingleStore icon, open it in another tab or window, right click on the image in this new tab or window, and save it to your computer.

    3. Click Next.

    sso-okta-05.png
  6. In the SAML Settings form:

    Under General:

    1. In the Single Sign on URL field, enter:

      https://auth.singlestore.com/auth/realms/memsql/broker/YOUR-DOMAIN-NAME/endpoint

      Replace YOUR-DOMAIN-NAME with the domain name you’ll be using to sign on.

    2. In the Audience URI (SP Entity Id) field, enter:

      https://auth.singlestore.com/auth/realms/memsql

    3. In the Name ID format drop-down, select Persistent.

    4. In the Application username drop-down, select Email.

    Under Attribute Statements (optional), add the following values, take a screenshot of this completed Attribute Statements section and click Next.

    Name Field

    Name Format Drop-Down

    Value Drop-Down

    firstName

    Unspecified

    user.firstName

    lastName

    Unspecified

    user.lastName

    email

    Unspecified

    user.email

    sso-okta-06.png
  7. Select the I’m an Okta customer adding an internal app radio button, fill out the requested information, and click Finish.

    sso-okta-07.png
  8. Click View Setup Instructions.

    sso-okta-08.png
  9. Scroll to the bottom of this page and, under Optional, copy the value in the Provide the following IDP metadata to your SP provider field. You’ll need this copied value for the next step.

    sso-okta-09.png
  10. Provide the following information to SingleStore by opening a support request:

    • The Attribute Statement screenshot you saved in Step 6.

    • The IDP metadata value you copied in Step 9.

    • Your identity provider (Okta).

    • The domain name you’ll be using to sign on with (email@domain).

  11. Assign Okta users to this new SingleStore application. Don’t forget this step!

  12. SingleStore will contact you when Managed Service has been configured to use SSO for your organization’s Okta users.

  13. Log in by going to https://portal.singlestore.com, click Single Sign-On, enter your email address, and click Continue.