Integrating OKTA Single Sign-On with Deltek WorkBook enhances security and streamlines user access.

Configure Single Sign-on

The following configuration will allow you to use OKTA for Single Sign-on in WorkBook.

Set up Single Sign-on in OKTA

Step 1: Create a new App Integration in OKTA

• Navigate to your OKTA account admin page.

• Go to Applications > Applications and click “Create App Integration.”

Open

Step 2: Okta App Configuration

• Name

Open

• SAML Settings

Ensure ‘Use this for Recipient URL and Destination URL’ in not checked.

Fill out the following URLs as followed, replacing the base URL with your WorkBook instance URL.

Enter the attributes as followed:

• Name: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name

• Name format: URI Reference

• Value: user.email

Step 3: Assign Users and Groups

Ensure all WorkBook users are assigned to the Okta app

Step 4: Prepare Okta configuration for WorkBook

In the Okta App sidebar, select ‘View SAML setup instructions’:

Copy the following values:

• Identity Provider Single Sing-On URL

• Identity Provider Issuer

• X.509 Certificate

Use Identity Provider Single Sign-On URL and Identity Provider Issuer to populate the following XML file:

You will need to copy this XML, with the changed values as shown below:

• PartnerIdentityProvider = Identity Provider Issuer

• SingleSignOnServiceUrl = Identity Provider Single Sing-On URL

Step 5: Complete WorkBook Okta configuration

Navigate to:

Settings > Global System Settings > System Variables > Login & password policy

• 1178 - SAML Use UserLogin

Ensure checked.

• 1002 - SAML Configuration

Enter the XML configuration file into variable

• 1006 - SAML IdentityProvider Certificate

Enter the X.509 certificate from Okta