<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7UyqSAFOkta Classic EngineOkta Integration NetworkAnswered2021-09-02T16:48:18.000Z2017-07-19T08:28:17.000Z2018-07-25T19:56:22.000Z

YoavM.57199 (Customer) asked a question.

Edited by varun.kavoori1.5210444522562532E12 September 5, 2018 at 1:19 AM
pass username
My company is working on enabling SSO for some of our customers using Okta SAML. When users log in to our system, they provide their email address and then we know how to authenticate them: redirect them to Okta or authenticate them ourselsves. 

In the Okta login scenario, since the users already provided their username in our system, we rather they didn't have to retype it in Okta. 

Is there a way w ecan pass the username to the Okta login page?

 

We are using Java and OpenSAML.

We tried passing the username as a <Subject> element in the AuthnRequest. That didn't work: Okta left the username field empty.  

 

Thanks in advance!

  • 4 answers
  • 2.59K views

  • matt.maher (Presales - Americas Commercial, Emerging East)

    Hi Yoav, This is exactly something that Okta can do! The Okta IWA Web App for DesktopSSO allows users who authenticate with Windows to be automatically authenticated with Okta. Okta IWA is a lightweight Internet Information Services (IIS) web app that enables Desktop SSO on the Okta service. 

     

    Please take a look at our detailed documentation about how to integrate that in your environment. 

     

    Install and Configure the Okta IWA Web App for DesktopSSO

    https://help.okta.com/en/prod/Content/Topics/Directory/Configuring_Desktop_SSO.htm?Highlight=configuring%20desktop%20sso
    Expand Post

  • OzgurO.21714 (Customer)

    Hello

     

    I have a similar issue. If there is no IWA in place, my users are having to type their username (email address) twice in an IDP Discovery scenario. We have Hub & Spoke model in which we publish apps at the Hub level and we want our Spoke users to be able to log in. Our apps have custom login page which is the IDP Discovery. On this custom page, users enter their username, we then send them to their Spoke but we can't pass the username. So, they have to enter it again on the Spoke login page which is silly. Any thoughts?

     

    Thanks

    Oz
    Expand Post

  • matt.maher (Presales - Americas Commercial, Emerging East)

    Hi Oz, I think it would be best if you opened a support case with us to better assist you with your question. You can open a support case here: https://support.okta.com/help

  • KevinK.42938 (Customer)

    The original question was not about a Windows integration, but about passing a user id to Okta (when acting as IdP) through the <saml2:Subject> element of the <AuthnRequest>, and have that id show up in the Okta login widget, overriding a possible "Remember me" cookie.

     

    We would like that feature as well. I looked through the Idea section under Federation and protocols, there doesn't seem to be one for this requirement. 

    Expand Post
This question is closed.
Loading
pass username