Configure settings in SureMDM Console (Okta)

1. Navigate to SureMDM Web Console > Settings (icon located at the top right of the screen) > Account Settings > SAML Single Sign-On.

2. Configure Single Sign-On settings for PingOne.

Settings	Description
Enable Single Sign-On	Select this option to allow configuring Single Sign-On settings.
SSO Type	Select Okta.
Service Identifier	Enter the Service Identifier. This value is present in Setup instructions tab i.e. Identity provider issuer, see step no.10, Configure settings in Okta server. For example: http://www.okta.com/exk2kuyba0rCTZQOC1t7
Sign On Service Url	Enter the Sign On Service Url. This value is present in Setup instructions tab i.e. Identity Provider Single Sign-On URL,see step no.10, Configure settings in Okta server. For example: https://42gears123.okta.com/app/42gears1_suremdm_1/exk2kuyba0rCTZQOC1t7/sso/saml
Logout Service Url	Enter the URL for logout. For example: https://42gears123.okta.com/app/42gears1_suremdm_1/exk2kuyba0rCTZQOC1t7/slo/saml
Roles	Choose an option for the Roles from the drop-down menu. To know more see Configure Permissions for Role-Based Admin.
Device Group Set	Choose an option for Device Group Set from the drop-down menu. To know more, see Configure Permissions for Device Group Set Based Admin .
Jobs/Profiles Folder Set	Choose an option for Device Group Set from the drop-down menu. To know more, see Configure Permissions for Job Folder Set Based Admin.

3. Copy the text value present inside X 509 Certificate and save it in a file with extension .cer.

4. Click Upload Certificate to Upload cer file.

Keep the password field empty. If Upload Certificate option is not visible and Download Certificate is visible instead, then delete the existing certificate and again upload the saved cer file.

5. Login to Okta and use the below url to login to 42Gears UEM server.

https://<SureMDM Server URL>/console/ssologin/<SureMDM Account ID>

Note: Admin should enter their Server URL and Account ID into the above-mentioned URL.