I'm trying to fully wrap my head around the scnerio's discussed here:
Our platform will be the use case described: " ... many SaaS ISVs needing to integrate with customers’ corporate identity infrastructure. "
My question is about the specific scenario when many of our Platform's client use Okta as their SAML IdP's.
In order to support clients on our platform who use Okta as their IdP, we will create an Okta Application.
If there are two different clients on our platform; both of which use Okta as their IdP, who both add our Okta Apllication within their individual Okta accounts - will the ACS URL always be the same for these two Okta clients? Or can our platform provide a unique URL for each Okta client to set when they add our Application within Okta?
Thank you for your response. If I want separate clients to hit a different ACSurl endpoint on the SP side, and if the end users are managing their SAML IdP in Okta; can a single `Okta Application` (https://www.okta.com/resources/find-your-apps/?tags=SAML) provide different sub-domains on the ACS url?
If so; could you link me to the docs which detail how this is achieved?
Hi Gabriel, thanks for the further information you provided.
I had a look at the GSuite Okta App that our company has added to its SSO which it manages in Okta. I noticed there is a field: "Your Google Apps company domain." I hadn't spotted that before; but it seems like the setting I was looking for.
Except of course; I need it to be available in an new Okta App created by us. So is there a way to acheive that?
Ah right - the penny drops! Great - thinking I'm starting to get it. Thanks for all your assistance.