> ## Documentation Index
> Fetch the complete documentation index at: https://docs.y.uno/llms.txt
> Use this file to discover all available pages before exploring further.

# Okta SSO Guide

This guide explains how to connect Yuno to Okta using SAML 2.0.

## Prerequisites

* An Okta account
* An application for use with Yuno
* Admin privileges in Okta to manage SSO settings
* Access to the [Yuno dashboard](https://dashboard.y.uno/)

<Steps>
  <Step title="Create a SAML application in Okta">
    In Okta, go to:

    **Applications → Create App Integration → SAML 2.0 → Next**

    Select a name for your application and, optionally, upload a logo. You will then see the SAML configuration form.

    <Frame>
      <img src="https://mintcdn.com/yuno-3979e326/MTlogjS0_SlxtlJG/images/reference/okta-sso-guide/image1.png?fit=max&auto=format&n=MTlogjS0_SlxtlJG&q=85&s=5ac88793b28d72116794f9b8f33954be" width="1510" height="1296" data-path="images/reference/okta-sso-guide/image1.png" />
    </Frame>
  </Step>

  <Step title="Configure SAML settings using Yuno values">
    Open the Yuno dashboard, click your profile image, then open **Security**.  Navigate to the **Single Sign-On (SSO)** tab, click **Set up**, and gather this info:

    * Identifier (Entity ID)
    * Assertion Consumer Service URL

    Copy these values into the Okta SAML form:

    * **Audience URI (SP Entity ID)** → Identifier (Entity ID)
    * **Single sign-on URL** → Assertion Consumer Service URL

    Click **Next**, then check the option **This is an internal app…**, and finish the setup.

    <Frame>
      <img src="https://mintcdn.com/yuno-3979e326/MTlogjS0_SlxtlJG/images/reference/okta-sso-guide/image2.png?fit=max&auto=format&n=MTlogjS0_SlxtlJG&q=85&s=f3240b8b8b103e9ad58fba3d8aa433db" width="1698" height="766" data-path="images/reference/okta-sso-guide/image2.png" />
    </Frame>
  </Step>

  <Step title="Export and upload the metadata XML">
    In Okta, locate the **Metadata URL** under the application’s settings and open it. Save the file as `metadata.xml`.

    Then, in the Yuno dashboard:

    1. Upload the `metadata.xml` file under **Yuno configuration → Option A: Upload metadata XML**
    2. Wait for the **Upload completed** confirmation
    3. Click **Save**

    <Frame>
      <img src="https://mintcdn.com/yuno-3979e326/MTlogjS0_SlxtlJG/images/reference/okta-sso-guide/image3.png?fit=max&auto=format&n=MTlogjS0_SlxtlJG&q=85&s=6091f686fdeb0a772bc4fa16ae11003c" width="1024" height="1536" data-path="images/reference/okta-sso-guide/image3.png" />
    </Frame>

    Alternatively, you can take the information listed in **Option B** and enter it manually.
  </Step>

  <Step title="Assign users in Okta (optional)">
    Once configuration is complete, you can assign Okta users or groups to the application so they can log in using SSO.
  </Step>
</Steps>

## Troubleshooting

If you cannot set up the SSO connection or run into issues after initial configuration:

* Yuno requires **signed SAML responses**, check:
  * Both the SAML response and the assertion are signed
  * The signing algorithm configured in Okta is **SHA-256**
  * The certificate used for signing matches the one included in the metadata
* Review SSO logs in the Yuno dashboard under **Security → Single sign-on (SSO)**