IceHrm
  • Introduction
  • Getting Started
    • Introduction
    • Installation
    • Manual Installation
    • Securing icehrm installation
    • Basic Settings
    • Mobile App
    • AWS S3 File Storage
  • Employees
    • Employee Management
    • Employee Data Import
    • User permissions
  • Time and Attendance
    • Attendance Module
    • Timesheets
  • Documents
    • HR Form Management
    • Document Management
  • Leave Management
    • Vacation and Leave Management
    • Company Leave Policy
    • Leave Requests and Approval
  • Recruitment
    • Recruitment Management
  • Training and Reviews
    • Training Module
    • Performance Reviews
  • Travel Module
  • Payroll
    • Salary
    • Payroll Management
    • Import - Export Payrolls
    • Building Payroll For India
  • Expenses
    • Expense Management
  • Insights
    • Charts
    • Reporting
  • Other Modules
    • Company Assets
    • Reporting
    • Data Import
  • Api and Single Sign-on
    • Rest Api
    • Using LDAP
    • Sign-In with SAML (Okta)
  • Mobile Application
    • Attendance Tracking
    • My Leave
  • FAQ
    • Upgrade IceHrmPro
    • FAQ
    • Close Cloud Account
    • Blog
  • Developer Guide
    • Setup Development Environment
    • Creating First Extension
    • Adding a DB Migration
    • Adding Entries to DB
  • Release Notes
    • Release Notes IceHrmPro
    • Release Notes IceHrm Open Source
Powered by GitBook
On this page
  • Creating a Test SAML Application in Okta
  • Configuring the Okta Application
  • Extract Required Configuration from Okta SAML Application
  • Update IceHrm SAML Configuration
  • Enable SAML Sign-In

Was this helpful?

  1. Api and Single Sign-on

Sign-In with SAML (Okta)

PreviousUsing LDAPNextAttendance Tracking

Last updated 2 years ago

Was this helpful?

The latest documentation is available .

IceHrm SAML integration only works with IceHrmPro and IceHrm Open Source. This integration will not work with IceHrm Cloud installtions

Creating a Test SAML Application in Okta

Since you are trying to integrate IceHrm with Okta SAML you should already have a SAML Application created with Okta. But if you don't have an application here is a guide to create your SAML Application:

Configuring the Okta Application

This section describes how to configure the Okta SAML application so it can perform authentication for IceHrm.

We assume your icehrm URL is . Please replace this with your domain.

  1. On your Okta application following parameters should be set accordingly.

Single Sign On URL => http://icehrm.test/app/login.php
Recipient URL => http://icehrm.test/app/login.php
Destination URL => http://icehrm.test/app/login.php
Audience Restriction => http://icehrm.test

2. Then under the "Assignments" tab you need to add some users to this application. Make sure the email [SAML name id] of these users are the same as the login email for IceHrm.

Extract Required Configuration from Okta SAML Application

  1. Go to the "Sign On" section of your Okta Application

2. Click "View Setup Instructions" button. This will take you to a page with some configurations you need to update on IceHrm

Update IceHrm SAML Configuration

  1. Under the System -> Settings, SAML tab update the configuration using the values in previous step.

2. Assign users to your Okta SAML application under "Assignments" tab. Make sure the name id of the assigned user matches the email of a user registered in IceHrm user under System -> Users

Enable SAML Sign-In

  1. Under System -> Settings -> SAML tab set "SAML: Enabled" and "SAML: Auto Login" to "1".

  2. Then visit your IceHrm login page and you should be redirected to Okta login page.

  3. Login in using your Okta credentials.

here
https://developer.okta.com/docs/guides/build-sso-integration/saml2/create-your-app/
http://icehrm.test
Configuration from IceHrm Test Application
IceHrm SAML configuartion
IceHrm Users
Assigned users in Okta Application