Integrate Okta SSO with jumpserver
Note: SAML is an authentication mechanism for web applications. It's based on web protocols and it cannot be used for user authentication over SSH.
1. Login to okta and add Application
2. Select SAML 2.0 and click Next
3. Fill App Name and click next
4. Fill the SAML setting
Click on Next after providing the Single sign on URL and entity ID in the SAML settings.
5. Check I'm an Okta customer adding an internal app & This is an internal app that we have created and click Finish
On the next page you can see the setup instructions.
6. You can copy paste the settings found in setup instructions to Ezeelogin GUI > Setting > SAML
Or you can click on the Identity Provider metadata, then it will open a page containing metadata.
Copy the URL of the page and paste it to Metadata URL on Ezeelogin GUI > Settings > SAML Metadata URL and click on the Fetch button, it will autofill the SAML settings and Save it.





14. You can log in to Ezeelogin shell via Webssh shell or using any SSH client such as Putty or terminal etc.
WebSSH: Click on the 'Open Web SSH Console' icon to SSH via the browser
WebSSH terminal will open like below. Users can navigate the server group with the Up and Down arrow buttons and enter to login into the server.
Native SSH Client: After resetting the password and security code you can SSH to the Ezsh shell (using Terminal or Putty) with the SAML username.


You need to add different email address for each users. By default ezeelogin uses email address for creating users.
If you want to add an existing user in ezeelogin to SSO, Add the user with exact username, email address as follows. (Ezeelogin will verify with the email address of the users by default)
Saml authentication is not supported for slave if the URL is IP based.If you want to authenticate slave using saml you have to use domain name.