Setting up Okta SSO

How to Configure SAML 2.0 for Holistiplan

 Supported Features

  - SP-initiated SSO
  - SAML 2.0

 For more information on SAML and supported features, see
  https://help.okta.com/en/prod/Content/Topics/DeploymentGuides/SAML_Guidance.htm.

 Configuration Steps

 Before you begin

  - You must be a Holistiplan firm administrator to configure SSO
  - If you don't see the SSO option in your settings, contact support@holistiplan.com

 In Okta:
  1. From the Admin Console, go to Applications > Applications
  2. Select your Holistiplan application
  3. Go to the Sign On tab
  4. In the SAML 2.0 section, click Identity Provider metadata to download the XML file
  5. Save the file to your computer

 In Holistiplan:
  1. Log in to your Holistiplan application as a firm administrator
  2. Navigate to Settings > Security Settings
  3. Scroll down and enable SSO Self Serve
  4. In the SSO Configuration section, select Okta as your Identity Provider
  5. Click Okta Settings
  6. Click Import from XML and upload the XML metadata file you downloaded from Okta
  7. Click Submit
  8. Select Enable SSO or SSO Only (no passwords) based on your preference

  Notes:

 Important: The default sign-in page URL is: https://app.holistiplan.com

 User Requirements: Users must already exist in Holistiplan before they can sign in via SSO.

 Attribute Mapping
  The following user attributes are mapped:
  - Email → user.email
  - First Name → user.firstName
  - Last Name → user.lastName
  - Username → user.email

 Need Help? If you encounter any issues during configuration, please contact support@holistiplan.com for assistance.