This guide will walk you through setting up Single Sign-On (SSO) with Okta for your ISMS.online environment.

Note: To complete this setup, you’ll need access to your Okta admin panel.

1. Create and Configure the Application in Okta

Create the Application

  1. In your Okta admin panel, go to Applications > Applications.
  2. Click Create App Integration and select SAML 2.0.
  3. Under General Settings, set the app name to ISMS.online. You can also upload a logo if you wish.
  4. Click Next to proceed.

Configure SAML Settings

By the end of this process, your platform URL will use a unique subdomain, for example:
 https://company.isms.online/

Choose a subdomain that reflects your organisation name. Then configure the SAML settings as follows:

Standard Configuration

  • Single sign-on URL:
     https://<SUBDOMAIN>.isms.online/sso/saml2
  • Audience URI (SP Entity ID):
     https://<SUBDOMAIN>.isms.online/sso/saml2/sp
  • Name ID format: Persistent
  • Application username: Email

Regional Settings

Use the configuration below if your organisation is hosted in a specific region:

Region

Single Sign-On URL

Audience URI (SP Entity ID)

APAC

https://<SUBDOMAIN>.r2.isms.online/sso/saml2

https://<SUBDOMAIN>.r2.isms.online/sso/saml2/sp

North America

https://<SUBDOMAIN>.r3.isms.online/sso/saml2

https://<SUBDOMAIN>.r3.isms.online/sso/saml2/sp

European Union

https://<SUBDOMAIN>.r4.isms.online/sso/saml2

https://<SUBDOMAIN>.r4.isms.online/sso/saml2/sp


Replace <SUBDOMAIN> with your chosen subdomain.



Attribute Statements

Under Attribute Statements (optional), add the following:

Name

Value

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/givenname

user.firstName

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/surname

user.lastName

http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress

user.email





Leave all Name format fields as Unspecified.

Scroll down and click Next. Select I’m an Okta customer adding an internal app and click Finish.

2. Share Configuration Details with ISMS.online

Once you’ve created the app, navigate to the Sign On tab. Under SAML Setup, click View SAML setup instructions.

Please provide the following details to ISMS.online:

  • The subdomain you set (if not already configured on the platform).
  • Entity ID.
  • SSO target URL.
  • Security certificate (base64 format).

Important: Requests should come from an Organisation Admin.

Send the details to support@isms.online or use the live chat feature for faster assistance.

3. Assign Users to the Application

To grant users access:

  1. Go to the Assignments tab in your ISMS.online app in Okta.
  2. Click Assign and select Assign to People.
  3. Assign yourself and any additional users or groups.

For bulk user setup, our guide on New User Templates may be helpful.

4. Access ISMS.online via SSO

Once we confirm SSO has been enabled, users assigned in Okta can sign in using the new Sign in via SSO button at:
 https://<SUBDOMAIN>.isms.online

This URL replaces the generic platform.isms.online login and becomes unique to your organisation. Users attempting to log in with email and password will be redirected here.

Additional Notes

  • Users can still sign in with email and password until they first use SSO. After their first SSO login, it becomes mandatory for future access.
  • New users created in ISMS.online will automatically sync with your identity provider if they exist there. This works seamlessly with New User Templates to simplify onboarding.

Need Help?

If you have questions or need assistance during setup, contact the ISMS.online support team at support@isms.online or via live chat.