This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Okta integration with HiveManager (SAML Link)

Okta integration with HiveManager (SAML Link)

support140
New Contributor

‎01-24-2020 10:48 AM

Hello Team,

 

For a customer of ours, we want to implement HiveManager with Okta.

 

The question we really need answered before we ask to activate SAML in HiveManager and we create the SAML link: when you create the SAML link, will the whole HiveManager be accessed through Okta authentication immediately? Or is it possible to create an (test)SSID to test the integration with Okta?

 

The situation which we want to avoid, is that immediately everybody needs to authenticatie through Okta before we tested the integration with a test SSID

 

0 Kudos
8 REPLIES 8

support140
New Contributor

‎01-27-2020 03:09 PM

What do you exactly mean with "but to log in as admin"? Can we exclude the admin from the LDAP directory or do you mean that we need an admin in the idp (in this case Okta) to communicate between the idp and Aerohive? Thanks!

0 Kudos

samantha_lynn
Esteemed Contributor III

‎01-27-2020 02:36 PM

We can authenticate users to the SSIDs using LDAP, but to log in as admins using LDAP we'd still need SAML enabled for it.

0 Kudos

support140
New Contributor

‎01-27-2020 02:16 PM

Hello Sam,

 

Thank you for your response. But perhaps to make it more easy: can Aerohive authenticate users using the LDAP protocol? Or is this not possible?

0 Kudos

samantha_lynn
Esteemed Contributor III

‎01-27-2020 01:08 PM

We don't have any documentation related to an OKTA set up at the moment, but to enable SAML you would want to open a support ticket so we can get that enabled for your VIQ. I can open a courtesy case for you to request SAML be enabled if you can:

 

  • Send federated metadata to communityhelp@aerohive.com
  • Confirm that you have IDP-initiated SSO set up
  • Confirm there is an admin and sub admin that will use the SSO already set up in ExtremeCloud IQ as admins
  • Provide a point of contact who has access to the network we're working with, for us to work with in case we have questions
  • Provide your VIQ to communityhelp@aerohive.com as well. You can find this in Global Settings> VIQ Management
0 Kudos
GTM-P2G8KFN