5.0
Okta
Map groups to Lenses
Groups are case-sensitive and mapped by name with Okta
Integrate your user-groups with Lenses using the Okta group names. Create a group in Lenses using the same case-sensitive group name as in Okta.
For example, if the Engineers group is available in Okta, create a group with the same name:
![Okta SAML Kafka user groups](./okta-saml-user-group.png)
The above group will match all the users in the equivalent Okta group:
![Okta SAML user groups](./saml-okta-okta-group.png)
Learn how to set data permissions for users and service accounts using Apache Kafka and Okta .
Setup Okta IdP
Lenses is available directly in Okta’s Application catalog .
Add application in the Catalog
- Go to Applications > Applications
- Click Add Application
- Search for
Lenses
- Select by pressing
Add
![Okta Lenses](./saml-okta-lenses-app.png)
Set General Settings
- App label:
Lenses
- Set the base url of your lenses installation e.g.
https://lenses-dev.example.com
- Click Done
![Okta general settings Kafka](./saml-okta-general-settings.png)
Download idP XML metadata
Download the Metadata XML file with the Okta IdP details.
- Go to Sign On > Settings > SIGN ON METHODS
- Click on Identity Provider metadata and download the XML data to a file.
- Reference this file’s path in the
security.conf
configuration file.
lenses.security.saml.idp.metadata.file=<path_to_file>
![Okta SAML IdP metadata](./saml-okta-idp-metadata.png)
Learn more about SSO with SAML in Okta documentation.
See all SSO options .