Burp Suite Enterprise Edition is now available in our secure Cloud  –  Learn more

Enterprise Edition

Configuring SAML SSO with Okta

  • Last updated: June 6, 2024

  • Read time: 2 Minutes

This section explains how to configure SAML SSO using Okta as your identity provider. You may also need to refer to the Okta documentation.

Before you start

Make sure your web server URL includes protocol and port information. For more information, see Configuring your web server.

Note

The relying party trust information is dependent on your web server URL.

Step 1: Add Burp Suite Enterprise Edition to your trusted applications

To add Burp Suite Enterprise Edition to your trusted applications:

  1. Log in to Burp Suite Enterprise Edition as an administrator.
  2. From the settings menu , select Integrations.
  3. On the SAML tile, click Configure. Notice that you can copy both the Relying party trust identifier and the Relying party service URL.
  4. In Okta, go to SAML Settings.
  5. Paste the Relying party service URL into the Single sign on URL field.
  6. Select the Use this for Recipient URL and Destination URL tick box.
  7. Paste the Relying party trust identifier into the Audience URI field.

Step 2: Obtain key details from Okta

To configure Burp Suite Enterprise Edition, you need to obtain some key details from the Okta SAML Settings page:

  • The Identity Provider Issuer. This is the URL that is sent as the Issuer value in SAML responses.
  • The Identity Provider Single Sign-On URL. Burp Suite Enterprise Edition sends users to this URL when they choose to log in using SAML.
  • The token-signing certificate. Burp Suite Enterprise Edition uses this to verify that the SAML response was genuinely issued by Okta.

Step 3: Enter the key details in Burp Suite Enterprise Edition

To enter the key details in Burp Suite Enterprise Edition:

  1. In Burp Suite Enterprise Edition, make sure that you're still on the SAML page.
  2. In Company details, enter your company name.
  3. In SAML configuration, select the Identity provider.
  4. Enter the key details in the relevant fields.
  5. Click Save.

Step 4: Test your configuration

Once the connection is successfully established, we recommend that you test your configuration by logging in to Burp Suite Enterprise Edition. If the configuration was successful, you will see a message that you have logged in, but you don't yet have permission to do anything.

Managing groups

You can now configure how you manage your groups:

Was this article helpful?