Wistia SSO Setup - Okta

Learn how to configure Wistia SSO with Okta for simpler and more secure logins.

Alert
SSO is only available for accounts on the Premium Plan at this time. Reach out to your Customer Success Manager or Wistia Support to get started!

Get the Wistia app in the Okta Integration Network

Wistia has an official integration with Okta which is available here in the Okta Integration Network. This makes the configuration process very easy within Okta.

After configuring the app in Okta, collect the IdP metadata URL and send it to Wistia:

  • Under the “SAML Signing Certificates” heading, locate the active “SHA-2” certificate.
  • Click the “Actions” dropdown and choose “View IdP Metadata.”
  • Copy the metadata URL from the browser tab that opens and send it to your Customer Success Manager.

Upon receiving the IdP metadata URL, Wistia will configure and enable SSO logins for your account, and notify you when ready.

Create a Custom SAML application in Okta (optional)

Note
This manual setup process is entirely optional, and we recommend the official Wistia integration with Okta instead.

If needed, it is possible to manually configure a custom SAML application with the following steps:

  1. Within your Okta Organization, click “Applications,” then “Create App Integration.”
  2. Choose “SAML” and click “Next.”
  3. Name the app Wistia. For the logo, you can use this file.
  4. Check the “Do not display application icon to users” checkbox. Click “Next.”

Enter the following values in the “(A) SAML Settings” section:

Fieldvalue
Single sign-on URLhttps://sso-auth.wistia.com/saml2/idpresponse
Identifier (Entity ID)urn:amazon:cognito:sp:us-east-1_2sjOZnclh
Audience URI (SP Entity ID)urn:amazon:cognito:sp:us-east-1_2sjOZnclh
Name ID formatEmailAddress
Application usernameEmail

Enter the following values in the “(B) Attribute Statements (optional)” section:

NameName FormatValue
emailUnspecifieduser.email
firstNameUnspecifieduser.firstName
lastNameUnspecifieduser.lastName
  • Click “Next.”
  • Choose the “I’m an Okta customer adding an internal app” option and click “Finish.”

Lastly, collect the metadata URL and send it to Wistia:

  • Under the “SAML Signing Certificates” heading, locate the active “SHA-2” certificate.
  • Click the “Actions” dropdown and choose “View IdP Metadata.”
  • Copy the metadata URL from the browser tab that opens and send it to your Customer Success Manager.

Upon receiving the IdP metadata URL, Wistia will configure and enable SSO logins for your account, and notify you when ready.

More Details on Wistia SSO

For more information around our SSO functionality and what we currently support, check out our main SSO article which includes lots of details and an FAQ section with answers to common questions.