SAML SSO Okta: Implementation Guide
Okta is a popular SSO provider and identity management service. Okta integrates with corporate directories, as well as on-premise, cloud-based, and mobile apps. With Okta, you can enter your login information once and access all your work applications and tools, including Wrike, without being prompted to log in to each of them.
Tip
More information, including details of the benefits and limitations of setting up single sign-on, can be found in our SAML SSO: User Guide.
-
Sign in to your Okta admin account and go to Applications.
-
Click Add Application.
-
Find Wrike in the list, and add it to your account.
-
Log in to your Wrike account as an account owner or an admin with advanced security permissions. Make sure to meet the necessary requirements and do Steps 1–6 as described in the "Enable single sign-on" section of our SAML Implementation Guide.
-
Back in your Okta account, click Wrike in the list of added applications and switch to the Sign on tab. Here, you can get the metadata to input for Step 7 in our SAML Implementation Guide. There are two options:
-
Right-click Identity Provider metadata and copy the link to input into the Use URL to provide XML field in Wrike.
-
Alternatively, click Identity Provider metadata to open it in a new tab. Copy the metadata and paste it into the Enter XML field in Wrike.
-
-
Proceed with Steps 8–14 of the SAML Implementation Guide.
-
Once the setup is complete, you're free to access Wrike through your Okta profile. To enter Wrike, just click the Wrike icon from the homepage of your Okta workspace. You can also use your email address on Wrike's login page to be automatically redirected to the Okta sign-on page and enter Wrike.
Tip
After the SSO setup is finished, we recommend testing it in the optional mode, where users can still log in to Wrike using their password. To ensure that user authorization is working correctly:
-
Open a new window in incognito mode.
-
Go to IDP Login and log in to Wrike.
-
Provide your login information.
If everything goes fine, you'll be logged in to Wrike. After that, you can proceed with enforcing SSO login for all users in the account.