Merge branch 'patch-50' into 'master'

Update Okta configuration notes See merge request gitlab-org/gitlab-ce!27076

Merge branch 'patch-50' into 'master'
Update Okta configuration notes See merge request gitlab-org/gitlab-ce!27076
b17d459b · Evan Read · 61ed9239 · f7ee6d83 · b17d459b
Commit b17d459b authored Apr 09, 2019 by Evan Read
Hide whitespace changes
Inline Side-by-side

Showing with 6 additions and 1 deletion

doc/administration/auth/okta.md doc/administration/auth/okta.md +6 -1

No files found.
--- a/doc/administration/auth/okta.md
+++ b/doc/administration/auth/okta.md
@@ -92,18 +92,23 @@ Now that the Okta app is configured, it's time to enable it in GitLab.
 1.  Add the provider configuration.
      >**Notes:**
+      >
      >- Change the value for `assertion_consumer_service_url` to match the HTTPS endpoint
         of GitLab (append `users/auth/saml/callback` to the HTTPS URL of your GitLab
         installation to generate the correct value).
+      >   
      >- To get the `idp_cert_fingerprint` fingerprint, first download the
         certificate from the Okta app you registered and then run:
         `openssl x509 -in okta.cert -noout -fingerprint`. Substitute `okta.cert`
         with the location of your certificate.
+      >
      >- Change the value of `idp_sso_target_url`, with the value of the
         **Identity Provider Single Sign-On URL** from the step when you
         configured the Okta app.
-      >- Change the value of `issuer` to a unique name, which will identify the application
+      >     
+      >- Change the value of `issuer` to the value of the **Audience Restriction** from your Okta app configuration. This will identify GitLab
         to the IdP.
+      >     
      >- Leave `name_identifier_format` as-is.
    **For Omnibus GitLab installations**