Configure Single Sign-on (SSO) with Okta
Joel Bradley avatar
Written by Joel Bradley
Updated over a week ago

Tags | Authentication | SSO | SAML | Okta |

Admin privileges required

Applies to: Basic, Business

Enterprise users can access their documentation here. Find your plan.

From the Applications page in Okta, click Browse App Catalog. That will take you to the Application Directory, from which you can search for Stack Overflow for Teams.

Then Click Add to begin set up.

1. Okta Setup for Stack Overflow for Teams

Give the application a name (we recommend sticking to the default Stack Overflow for Teams). Then Click Done.

On the Application page, click the Sign On tab, then open View Setup Instructions in a separate browser. We will be using details from this page in setup.

In a new browser, open your Stack Overflow Authentication settings on Stack Overflow. Make sure Single sign-on (SSO) is selected.

2. Configuring Okta Authentication Settings

On the Stack Overflow for Teams Application page on Okta, click the Edit button

Enter the Customer ID under Advance Sign-on Settings then press Save

3. Configuring Stack Overflow Authentication Settings

From the Okta View Setup Instructions skip to Step 4

Copy and paste the Single Sign-On Service URL given here to the Single Sign-On Service URL textbox on Stack Overflow Authentication settings.

Copy and paste the Issuer given here to the Issuer textbox on Stack Overflow Authentication settings.

For the following fields on Stack Overflow, you can enter:

Audience Restriction:
โ€‹ Display Name Assertion: displayname
โ€‹ Email Address Assertion: email

You can also add the following optional attributes. When configured and included in the SAML response, Stack Overflow for Teams automatically updates these user data fields on login. Job Title: jobtitle Department: department

Copy and paste the Identity Provider Certificate given here to the Identity Provider Certificate on Stack Overflow Authentication settings.

4. Test Configure Authentication Settings for your Stack Overflow Team

Validate your certificate by pressing Validate certificate (you should get a green box with a success message).

Now press Authenticate and enable. You should all be good to go to{addyourteam} with your SSO.

If any issue arises you can use Debug SAML auth settings and View SAML request to find out where the issue might be occurring.

Need help? Submit an issue or question through our support portal.

Did this answer your question?