Explore documentation
  1. Welcome 👋
  2. Product
    1. Tracing ↗
    2. Incident management ↗
    3. Uptime monitoring ↗
    4. Log management ↗
    5. Infrastructure monitoring ↗
    6. Status page ↗
    7. Error tracking ↗
    8. Warehouse ↗
  3. Integrations
    1. Integrating with Better Stack
    2. iOS & Android
    3. SSO providers
      1. AWS SSO
      2. Azure SSO
      3. Okta SSO
        1. Overview
        2. SAML setup instructions
        3. SCIM setup instructions
        4. Dynamic RBAC Assignments
      4. Other SSO providers
    4. Terraform
    5. MCP server
  4. Team and account management
    1. Team management
    2. Account settings
    3. Reporting
    4. Audit logs
  5. Design
    1. Brand guidelines

Okta SAML setup instructions

Connect your Okta organization with Better Stack to enable single sign-on (SSO) for you and your colleagues.

Supported features

  • IdP-initiated SSO
  • SP-initiated SSO
  • Just-in-Time provisioning

Configuration steps

In Better Stack

  1. Go to Single Sign-On settings and click Connect in the Okta SSO section.
  2. Copy the Integration ID. You will need it in a moment.

In Okta

  1. Sign in to your Okta organization.
  2. Go to ApplicationsApplications.
  3. Click Browse App Catalog and search for Better Stack.
  4. Click Add integration, then Done to create the integration.
  5. Go to the Sign on tab and click Edit next to Settings.
  6. Scroll to Advanced Sign-on Settings and enter the Integration ID from Better Stack.
  7. Click Save.
  8. In the Assignments tab, assign your user account to the Better Stack application. You won't be able to finish the setup otherwise.
  9. Return to the Sign on tab.
  10. Go to SAML Signing Certificates, open the dropdown for the SHA-2 certificate, and click View IdP Metadata.
  11. Copy the metadata link.

In Better Stack

  1. Paste the metadata link into the corresponding field in your Better Stack SSO settings. Alternatively, you can enter the Identity Provider Single Sign-On URL and X.509 Certificate manually.
  2. Click Connect. You will be redirected to Okta to sign in.

Your Single Sign-On is now configured. 🎉

Optional: Just-in-time provisioning (JIT)

  1. Go to Teams.
  2. Click the three dots on the desired team and select Configure.
  3. Add your email domain to Pre-approved domains.
  4. Click Save changes.

Optional: SP-initiated SSO

The Okta Single Sign-On URL is available in your Single Sign-On settings under Sign in URL.

The URL can also be constructed as follows: https://betterstack.com/users/sign-in/sso/okta/[integrationId]

Previous article

Okta SAML SSO & SCIM Provisioning

Next article

Okta SCIM setup instructions