SSO Integration Guideline for Okta
Step 1: Create and configure SAML2 App on Okta
1.1 Create Application on Okta
1.2 Configure SAML
Single sign-on URL:
Use this placeholder value
https://auth.drova.com/login/callback?connection=placeholder-will-update-later
Drova will provide the correct value in step 3.
Audience URI (SP Entity ID):
urn:auth0:drovacorp:placeholder-will-update-later
Use this placeholder value
urn:auth0:drovacorp:placeholder-will-update-la
Drova will provide the correct value in step 3.
Configure attribute statements for Email, FirstName, and LastName.
Step 2 Share SSO setting with Drova Team
Send an email to Drova Customer Support (support@drova.com) with the followinginformation:
Email domain(s) that you want to enable SSO
Metadata URL
Attribute Statements
Certificate
Step 3: Correct the Identifier (Entity ID) and Reply URL
When Drova completes configuring the SSO on our side, we will provide you with the following information, and you can finalize the configuration on your side.
Single sign-on URL
Audience URI (SP Entity ID)
Step 4: Testing
After completing all the above steps, we will set up a video call to test SSO. Please be aware that:
Drova enables SSO by email domain(s) and once SSO is enabled all users will be required to log in via SSO. The users who are already logged in can continue working and the SSO will trigger for their next login.
Drova does not have a test environment for customers to test SSO.
We can switch SSO on/off very quickly, in approximately 2 - 3 minute.s
💡Tip: To avoid impact to users, we would recommend performing the test during quiet hours, ideally after working hours.
Related Articles
SSO Integration Guideline For Microsoft Entra ID
SSO Integration Guideline For Microsoft Entra ID (formerly Azure Active Directory) Step 1: Setup Microsoft Entra ID 1.1 Login to Azure Portal and go to Microsoft Entra ID > Enterprise Applications 1.2 Create SAML application Click Create New ...SSO FAQ
General Q. Can SSO be used in combination with a normal password login? A. No. Our SSO system means that all users for a configured email domain will be required to use SSO to login. Q. Can I test SSO login before enabling? A. Drova can enable SSO on ...SSO Production Documentation
Single Sign-On Overview Identity allows connecting customers' users directories as an identity provider (IDP) and can be referred to as the "Identity Federation." When the federation is configured, the Identity delegates authentication and ...Identity Provider Information for SSO
Contact support@drova.com and request that your organisation can log-in to the Drova Platform via SSO. Support will request the Identity Provider Information; 3. Support will need the following Service Provider Information to be provided; 4. Once all ...Logging in with Single Sign-On (SSO)
Are you looking to add a new Position user to the system ie. a user requiring access to the full Drova GRC system who may own, be responsible for, manage record items, or be assigned tasks to complete? The system provides the capability to add new ...