Articles in this section

How to Configure Okta SSO with ShipHero

Updated

This guide explains how to configure Single Sign-On (SSO) for ShipHero using Okta Express Configuration, which allows Okta and ShipHero to automatically exchange configuration details — eliminating manual setup and reducing errors.

Table of Contents

Supported Features

The ShipHero–Okta integration supports the following features:

  • SSO (OIDC): Supported via Service Provider (SP)-initiated login.
  • Universal Logout: Supported if enabled in your tenant configuration. When triggered, your Okta session terminates immediately, but your ShipHero session may remain active for up to 24 hours.

Prerequisites

Before beginning setup, ensure you have:

  • Administrative access to your Okta tenant.
  • A valid ShipHero admin account.

Configuration Steps

Step 1: Add ShipHero in Okta

  1. Sign in to the Okta Admin Console.
  2. Navigate to Applications and select Browse App Catalog.
  3. Search for ShipHero.
  4. Click Add Integration, then click Done.

Step 2: Configure SSO Express Configuration

  1. Open the newly created ShipHero application in Okta.
  2. Navigate to the Authentication or Sign On tab.
  3. In the Express Configuration section, click Configure SSO or Configure SSO & Universal Logout.
  4. You will be redirected to the ShipHero login page.
  5. Sign in using your ShipHero admin credentials.
  6. Review the authorization screen and click Accept.
  7. Wait for Okta to complete the configuration process.

Once complete, you will be redirected back to Okta and a success confirmation will be displayed.

Step 3: Enable Universal Logout (Optional)

If your integration supports Universal Logout, follow these steps to ensure that logging out of Okta also terminates your ShipHero session:

  1. In the ShipHero app in Okta, navigate to the Sign On tab.
  2. Enable the option: Okta system or admin initiates logout.

Step 4: Assign Users and Groups

  1. Open the ShipHero application in Okta.
  2. Navigate to the Assignments tab.
  3. Click Assign.
  4. Select the individual users or groups that require access to ShipHero.

Testing the SSO Integration

SP-initiated Login (From ShipHero)

  1. Navigate to https://shipping.shiphero.com.
  2. Enter your registered email address.
  3. Verify that you are redirected to Okta for authentication.
  4. After successful authentication, confirm you are redirected back to the ShipHero platform.

Important Implementation Notes

Setting Name Description/Action
Express Automation Automates metadata exchange between Okta and ShipHero to reduce manual configuration errors.
Default Scopes The integration uses openid, profile, and email scopes by default.
Configuration Changes Modifying authentication settings may require a full reconfiguration of the integration.

Need help?

If you encounter issues during setup, contact ShipHero support at support@shiphero.com.

Was this article helpful?
0 out of 0 found this helpful

More Resources

  • ShipHero Public API

    Connect your tools and AI agents directly to ShipHero with the Public API. Build powerful integrations, automate workflows, and tap into real-time data using the AI tools you prefer, with the option for secure, read-only access for AI-driven insights without added risk.

  • ShipHero Academy

    Explore ShipHero Academy for certifications, deep-dive training, and expert-led courses on WMS and fulfillment. Build your expertise and help your team operate at a higher level.

  • Change Log

    Stay up to date with the latest improvements across ShipHero. The Change Log gives you a clear view of new features, enhancements, and fixes as they roll out—so you always know what’s new and what’s better.