Set up SSO for your Video Hub with Okta

Avatar
Brendan O'Driscoll
  • Updated
Who Can Use This Feature?
Free Starter
Teams Enterprise
Users must belong to a Team with the Edit video hubs permissions enabled

By integrating your Vidyard Video Hub with SAML SSO (Single Sign-ON), you can provide authenticated access to videos through your existing SSO portal.

This article is written specifically for the Okta IdP (Identity Provider), but any SAML 2.0 IdP will integrate with your Video Hubs.


Once SSO is configured for your hub, each video hub appears as a separate Okta app, allowing you to restrict access on a per hub basis. Before configuring the Okta app, your Vidyard Video Hub must first be configured to force authentication.

The following steps assume you have set up and configured a video hub. For more information, refer to our article on How to Set up a Video Hub.


Enable SAML 2.0 on your Video Hub

  1. From the Vidyard dashboard, select Channels > Hubs.
  2. Click Edit next to the hub you wish to modify. Select which hub you would like to edit for SSO
  3. Click on the Sharing tab.
  4. From the Manage Users dropdown, select Single Sign On (SSO) users
  5. Click Add Profile. Hub edit page with SSO sharing option selected and new profile able to be added
Note: The Use HTTPS for all requests toggle must also be enabled in order to use SSO.

If you are using a CNAME for your video hub domain, please contact Vidyard Support. Further steps are required to create a secure connection between your chosen domain and Vidyard's.


Create an SSO application in Okta

Once your hub has been configured for Okta SSO, you’ll need to create an Okta App for your hub so users can authenticate using their Okta credentials. You will be copying and pasting configuration details between Vidyard and Okta.

Complete the steps below to build the app:

  1. Log into Okta with admin access
  2. Click Applications, then select Add ApplicationCreate a New App
  3. Enter a name for the app, then click Next.
  4. Copy the ACS (Assertion Consumer Service) URL from Vidyard and paste it into the Single sign on URL textbox in Okta
  5. Check the Use this for Recipient URL and Destination URL checkbox
  6. Copy the Issuer/Metadata URL from Vidyard and paste it into the Audience URI (SP Entity ID) textbox in Okta
  7. In the Name ID format dropdown, select EmailAddress
  8. In the Application username dropdown, select Email
  9. Click Next.
  10. For the App type, check both I'm an Okta customer adding an internal app AND This is an internal application that we created.
  11. Click Finish.
  12. You will be directed to the Sign On tab in Okta. Under SAML 2.0, click View Setup Instructions. This will open a new browser tab.
    View Setup Instructions in Okta 
  13. From this tab, copy the X.509 Certificate and paste it into the requested location in Vidyard.
  14. Copy the Identity Provider Single Sign-On URL and paste it into the SAML Endpoint URL field in Vidyard.
  15. Click Save.

Need support

Submit a ticket or start a chat. We'll provide a self-serve resource or connect you with our support team, available 24x5.

Chat with Our Team