Skip to main content
BACK TO shiphero.com

ShipHero > Okta SSO: Express Configuration

  • Updated

This guide explains how to configure Single Sign-On (SSO) for ShipHero using Okta Express Configuration. This method allows Okta and ShipHero to automatically exchange configuration details, eliminating manual setup and reducing errors.

Table of Contents

Supported Features

The ShipHero-Okta integration supports the following features:

  • SSO (OIDC): Supported via both Service Provider (SP).
  • Universal Logout: Supported if enabled within your specific tenant configuration. Your Okta session will be terminated immediately, but the ShipHero session can remain active for up to 24 hours

Prerequisites

Before beginning the setup, ensure you meet the following requirements:

  • Administrative access to your Okta tenant.
  • A valid ShipHero admin account.

Configuration Steps

Step 1: Add ShipHero in Okta

  1. Sign in to the Okta Admin Console.
  2. Navigate to Applications and select Browse App Catalog.
  3. Search for ShipHero.
  4. Click Add Integration and then click Done.

Step 2: Configure SSO Express Configuration

  1. Open the newly created ShipHero application in Okta.
  2. Navigate to the Authentication or Sign On tab.
  3. In the Express Configuration section, click Configure SSO or Configure SSO & Universal Logout.
  4. You will be redirected to the ShipHero login page.
  5. Sign in using your ShipHero admin credentials.
  6. Review the authorization screen and click Accept.
  7. Wait for Okta to complete the configuration process.

Once complete, you will be redirected back to Okta where a success confirmation will be displayed.

Step 3: Enable Universal Logout (Optional)

If your integration supports Universal Logout, follow these steps to ensure that logging out of Okta terminates the ShipHero session:

  1. In the ShipHero app in Okta, navigate to the Sign On tab.
  2. Enable the option: Okta system or admin initiates logout.

Step 4: Assign Users and Groups

  1. Open the ShipHero application in Okta.
  2. Navigate to the Assignments tab.
  3. Click Assign.
  4. Select the individual users or groups that require access to ShipHero.

Testing the SSO Integration

SP-initiated Login (From ShipHero)

  1. Navigate to https://shipping.shiphero.com.
  2. Enter your registered email address.
  3. Verify that you are redirected to Okta for authentication.
  4. After successful authentication, confirm you are redirected back to the ShipHero platform.

Important Implementation Notes

Setting Name Description/Action
Express Automation Automates metadata exchange between Okta and ShipHero to reduce manual configuration errors.
Default Scopes The integration utilizes openid, profile, and email scopes by default.
Configuration Changes Modifying authentication settings may require a full reconfiguration of the integration.

Need help?

If you encounter issues during setup, contact ShipHero support at support@shiphero.com.

Was this article helpful?
0 out of 0 found this helpful

Related articles

Back to articles in this section

Related articles

Are you more of a visual learner?
Go to Videos