ChrisR.90670 (Customer) asked a question.
Hello, I'm trying to intergrate Okta with Duo via SAML where Okta is the IDP and Duo acts as the SP. I've configured a SAML app in Okta and have configured Duo with the necessary Okta information, but it looks like Duo expects Okta to send an encrypted assertion and it is not doing it. Reading up on the issue it appears there used to be an option in Okta's SAML settings to allow encrypting the assertion (see for example https://stackoverflow.com/questions/40114261/how-encrypt-and-decrypt-a-saml-assertion)
But the options they talk about in that stackoverflow as well as the documentation referenced do not exist any longer in Okta it appears. Was this feature previously available but no longer available? Or is there some way I'm not seeing to activate the encryption?
Hello @ChrisR.90670 (Customer) Thank you for reacting out to our Community!
The option is still there, for Custom SAML application. If you are using a Custom SAML app, this option under the General tab of the application->SAML Settings-> Configure SAML->Show Advanced Settings and change "Assertion Encryption" from Unencrypted to Encrypted. Please note that you will also need a certificate for this. This is usually provided by the SP.
Please see below a screenshot with the settings and our doc as well:
https://help.okta.com/oie/en-us/content/topics/apps/aiw-saml-reference.htm
Community members help others by clicking Like or Select as Best on responses. Try it today.
What you missed: new product releases and other announcements