Set up Okta SSO

To configure a SAML connection using the Okta admin dashboard
To submit setup details using the MindManager Customer Admin Portal

You can use SAML to set up Okta SSO. You must you have access to your Okta admin dashboard. Then, you must submit your setup details in the MindManager Customer Admin Portal.

To configure a SAML connection using the Okta admin dashboard

Back to Top
1 Log in to your Okta account.
After you’ve logged in, it may be possible to go directly to the page for creating your custom MindManager app integration with the correct URL and skip to step 6.
The URL will have a special prefix for your account. In this example it’s prefix-123, and your logged-in URL would look like:
You can go directly to the page to create a new app integration by adding -admin to the prefix and /admin/apps/saml-wizard/create after okta.com, like in this example:
Alternatively, move on to step 2 for the click-through process.
2 Go to the Okta admin dashboard.
If you signed in using https://www.okta.com, you can reach the admin dashboard by clicking Your Org or Your apps in the drop-down below your profile icon and then clicking the Admin button to the left of your user name at the top of the next page.
3 On the next page, click Applications under the Applications tab.
4 On the next page, click Create App Integration.
5 On the popup, choose SAML 2.0, and click Next.
6 On the General Settings tab of the Create SAML Integration page, enter a name in the App name box, and click Next.
MindManager is a suggestion in this example, but you can call it anything you like. You also have the option of uploading an app logo and choosing whether to display the logo to users.
7 On the Configure SAML tab of the Create SAML Integration page, enter the following information.
In the Single Sign-on URL box, enter the redirect URL, which you access by clicking:
https://cloud.mindmanager.com/api/v1/current-userpool-domains
There will be 2 different URIs displayed at the top of the page.
Copy the first URL from the current user pool page, and paste it in the Single Sign-on URL box.
Then type https:// at the beginning of the URL, and change the text oauth2 to saml2.
For example, if the current user pool page shows user-pool/oauth2/idpresponse, change it to https://user-pool/saml2/idpresponse after you paste it into the Single Sign-on URL box.
8 In the Audience URI (SP Entity ID) field enter: urn:amazon:cognito:sp:eu-central-1_Yl6Ea8Vvt
9 From the Name ID Format drop-down menu, select EmailAddress.
10 From the Application Username drop-down menu, select Email
Note: If you are making an update to an existing SSO configuration, use the Single Sign-on URL and Audience URI from the existing configuration.
11 In the Attribute Statements (optional) area, do the following:
In the Name field, enter http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
From the Name format drop-down, choose URI Reference.
From the Value drop-down, choose user.email.
12 Click Next.
13 Fill out the Feedback form.
We recommend selecting the I’m an Okta customer adding an internal app option, then filling out the survey, and clicking Finish.
14 Add people to the app by user account or by group.
In this example, the app is named MindManager.
15 Click the Assignments tab.
16 From the the Assign drop-down choose an option.
17 In the pop-up that appears, choose to who to add.
You can choose everyone, specific groups, or individuals.
If you add individuals, use the same username and email address used to log in to Okta.
18 Click the Assign.
19 In the pop-up that appears, you add more users by clicking Save and Go Back.
20 When you’ve finished adding users, click Done.

IMPORTANT: You can’t log in from the non-admin Applications page (that’s accessed without clicking through the Okta admin dashboard).

21 Click the Applications in the side menu.
22 Select the MindManager app that you configured.
23 Click the Sign On tab
24 Click Copy.

To submit setup details using the MindManager Customer Admin Portal

Back to Top
1 Sign in to your MindManager Customer Admin Portal.
2 Click Setup SSO.
3 On the Setup SSO page, select Okta (SAML) from the Choose Your Single Sign-on Provider drop-down menu.
4 On the Setup SSO page, input the list of domains that you want to be redirected to use your organization’s Active Directory to sign in. This usually is the company domain, and you can include additional domains that fall under the same active directory. For example, Corel’s is corel.com, as well as mindmanager.com. Anyone with @corel.com or @mindmanager.com email address will be redirected to Corel’s Azure AD for sign-in.
5 In the Input Required Information, fill in the following field:
App Federation Metadata Url — data copied in step 24 of To configure a SAML connection using the Okta admin dashboard.
6 Click Submit.
You will receive an email confirmation from noreply@mindmanager.com that we have successfully received your setup request has been successfully submitted. Check your spam or junkmail folders if you haven’t received the confirmation eamil.
There are three more stages before the setup is complete:
Domain Verification — for more information, see Domain verification.
Security Review — usually takes 3 to 5 business days.
Ready for Testing — once your submission is reviewed and approved, you will get another email notification that your setup is ready for testing. The status in the MindManager Customer Admin Portal is displayed as Ready for Testing. Follow the instructions in the MindManager Customer Admin Portal to test your setup. If everything is working as intended, setup is complete.
If you encounter issues with your setup, use the MindManager Customer Admin Portal to submit a support ticket.

Was this page helpful? Send feedback.