If you'd like to set up PrecisionLender authentication via Okta, you will first need to create a new Application within Okta.
- Log into your Okta administration area and create a new application
- Choose the Create New App option
-
Choose the options shown below:
- Platform = Web
- Sign on method = SAML 2.0
- Name your application PrecisionLender or something similar
- Click Next
- In the SAML settings area (on the General tab), you'll need to enter the following information:
-
-
ACS/SSO URL : https://sso.connect.pingidentity.com/sso/sp/ACS.saml2
- Dependent upon your PrecisionLender environment, this may need to be amended. Our team will work with you to determine if any changes are needed.
- Dependent upon your PrecisionLender environment, this may need to be amended. Our team will work with you to determine if any changes are needed.
-
Audience URI (SP Entity ID) : PingConnect
- Default RelayState: This URL varies between PrecisionLender tenants. The PrecisionLender team will provide you with a URL to use for the Default Relay State.
- Make sure the Application Username is populated by a field that will match the username field within PrecisionLender. This is usually the user's Okta username or email address.
- If the Okta username doesn't equal the format of the PrecisionLender username, you will need to select the appropriate corresponding parameter from the dropdown. For example, if the username in PrecisionLender is an email address, but the Okta username is not, then you'll need to select email address or it's equivalent field from the list.
-
ACS/SSO URL : https://sso.connect.pingidentity.com/sso/sp/ACS.saml2
- In the yellow SAML 2.0 section of the Sign-On tab, click the link for Identity Provider Metadata and then provide that resulting URL to the PrecisionLender support team. This information will be used to populate your SAML metadata into our system.