# Authenticating with Okta

Okta is a powerful and popular identity management solution used by thousands of businesses across the globe. Many developers wish to integrate Okta into their application authentication infrastructure, and DreamFactory offers a straightforward solution for doing so. In this tutorial we'll guide you through the configuration process.

# Configuring OKTA

Begin by creating an Okta account at https://www.okta.com if you haven't already done so. Once logged-in, open the Admin section:

Next, you'll add a new application:

Be sure to select SAML 2.0:

Next, we'll configure the application:

Open Setup instructions, making sure you don't close the tab containing these instructions as we'll return to them later:

# Configuring DreamFactory

Next, we'll configure DreamFactory to support the new OKTA application. Begin by signing into DreamFactory as an administrator, and then navigate to the Roles section and configure a role for the users who will sign in via Okta SSO. Here's an example of a role defining access to all APIs (not typical but nonetheless illustrative):

With the role defined, navigate to the Apps tab and create a new API key which will be associated with this role:

# Creating the SAML 2.0 Service

With the role and API key defined, it's time to create the SAML 2.0 service that will connect your Okta application to DreamFactory. Navigate to Services > Create, choose SSO, and finally SAML 2.0:

Begin by configuring the Info tab:

Next, configure the Config tab, filling in the fields with the information found in Okta's Setup instructions page:

Save these changes, and navigate to the API Docs tab. Here you can see new Okta endpoints: