Security Assertion Markup Language, or SAML, is a standardized way to grant access to organizational members to applications. While there are various ways to deploy apps via SAML, below we'll cover how to do so with two popular options, Microsoft Active Directory and Okta.

Note that SAML is only available on Enterprise versions of Nifty.

SAML can be enabled by the Workspace Owner via the Security Section of Workspace Settings via the toggle.

Once enabled, the Relay State Key will appear.

This Relay State ID will be require during your SAML app creation process.

Start by creating and naming an app in the Enterprise Applications section of AD.

Select the Integrate with a Non-gallery option and Create.

Within the app, navigate to the Single sign-on section in the sidebar and select SAML.

Edit the Basic SAML Configuration

Provide a name for the Idenfitier (perhaps the name you're using for the application) and insert https://api.niftypm.com/apps/saml in the Reply URL section.

Insert your unique Relay State key found below the enabled SAML toggle in Nifty into the Relay State field.

Once you've saved, you can add users and groups to this application via the Users and groups section in your sidebar.

Access the Applications section of the Admin panel of Okta and create an app integration.

Select the SAML 2.0 option and proceed with Next.

Name and optionally add a logo to the integration and proceed with Next.

In the next step requires inserting an SSO URL as well as the Delay Relay State. Insert https://api.niftypm.com/apps/saml for the SSO and Audience URL. Default Relay State can be found once your SAML is enabled in your Workspace Security Settings page.

You may preview the SAML assertion or proceed with Next.

Okta then asks you to fill out a brief survey before finishing your integration. You can now assign this integration to People or Groups within your Okta account.