SSO with Okta

Overview

Integrate Treblle with Okta to enable secure Single Sign-On for your team. This guide walks you through configuring SAML-based authentication between Okta and Treblle.

Prerequisites

Before you begin, ensure you have:

Configuration Process

The SSO setup process involves two main steps:

1. Configure a SAML Application in Okta
2. Configure SSO settings in Treblle

Part 1: Okta Configuration

Step 1: Access Okta Admin Console

1. Navigate to your Okta Admin Console 
2. Log in with your administrator credentials
3. From the left sidebar, select Applications → Applications

Step 2: Create SAML Application

1. Click Create App Integration at the top of the Applications page

2. In the dialog that appears:

   • Sign-in method: Select SAML 2.0

3. Click Next

Step 3: Configure General Settings

1. In the General Settings page:
   • App name: Enter Treblle SSO (or your preferred name)
   • App logo: (Optional) Upload your company or Treblle logo

2. Click Next

Step 4: Configure SAML Settings

In the Configure SAML page, configure the following:

Required Fields

Additional Settings

• Use this for Recipient URL and Destination URL: ☑ Checked
• Default RelayState: Leave empty
• Name ID format: Select Unspecified
• Application username: Select (None)
• Update application username on: Select Create and update

Step 5: Configure Attribute Statements (Optional)

Add attribute mappings to pass user information from Okta to Treblle:

To add attributes:

1. Scroll to the Attribute Statements section
2. For each attribute, enter the Name, keep Name Format as Unspecified, and select the Value
3. Click Add Another to add additional attributes

Step 6: Complete App Creation

1. Click Next
2. Click Finish

Step 7: Access SAML Setup Instructions

After creating the application, you’ll be redirected to the application overview page.

1. Click the Sign On tab
2. Scroll down to the SAML Setup section
3. Click View SAML setup instructions

Step 8: Copy Configuration Details

In the SAML setup instructions page, copy the following values:

Part 2: Treblle Configuration

Step 9: Access Treblle Authentication Settings

1. Log in to your Treblle workspace as a workspace owner
2. Navigate to Settings → Authentication
3. The authentication configuration page will appear

Step 10: Configure SSO in Treblle

Fill in the following fields with the information from Okta:

Company Email Identifier

Enter the unique identifier for your organization:

treblle-okta

Authentication Type

Select SAML from the dropdown menu.

Assertion Consumer Service URL

Enter the Identity Provider Single Sign-On URL you copied from Okta:

https://trial-1197259.okta.com/app/trial-1197259_treblletest_1/exkxqu72ph5Hp4Ak9697/sso/saml

Identity Provider Issuer

Paste the Identity Provider Issuer URL you copied from Okta. It should look like:

http://www.okta.com/exkxqu72ph5Hp4Ak9697

Identity Provider Certificate

1. Copy the X.509 Certificate from the Okta SAML setup instructions
2. Paste the entire contents including the header and footer:

   -----BEGIN CERTIFICATE-----
   [certificate content]
   -----END CERTIFICATE-----

3. Paste it into the Identity Provider Certificate field in Treblle

Step 11: Enable SSO Login

Check the box Enable SSO Login at the bottom of the form.

This will activate SSO for your workspace once you save the configuration.

Step 12: Save Configuration

Click Save Authentication to apply your SSO settings.

Part 3: Testing SSO

Step 13: Assign Users in Okta

Before users can sign in, you must assign them to the Treblle application:

1. In Okta Admin Console, go to your Treblle application
2. Select People from the left navigation bar.

4. Click Add People

5. Fill the user details in the form to grant access

7. Click Save

Tip

Bulk User Management: Assign Okta groups to the application rather than individual users for easier management at scale. Use People → More Actions → Import Users from CSV for this.

Part 4: User Login Flow

Step 14: Sign In with SSO

Once SSO is configured, users can sign in via SSO:

1. Go to https://identity.treblle.com/login 
2. Click Sign in with SSO
3. Enter your organization’s identifier

4. Enter your organization identifier: treblle-okta
5. Click Continue
6. You’ll be redirected to Okta login
7. Authenticate with your Okta credentials
8. You’ll be redirected back to Treblle and logged in

Alternative: Sign In via Okta Dashboard

Users can also access Treblle directly from their Okta dashboard:

1. Log in to your Okta account
2. Find the Treblle application tile on your dashboard
3. Click the tile to automatically sign in to Treblle

Managing SSO Configuration

Updating SSO Settings

To update your SSO configuration:

1. In Treblle, navigate to Settings → Authentication
2. Click Update on your SSO configuration
3. Modify the necessary fields
4. Click Save Authentication

Disabling SSO

To temporarily disable SSO:

1. Go to Settings → Authentication in Treblle
2. Uncheck Enable SSO Login
3. Click Save Authentication

Deleting SSO Configuration

To completely remove SSO:

1. Go to Settings → Authentication in Treblle
2. Click Delete on your SSO configuration
3. Confirm the deletion