HackerOne

You can use your Okta credentials to sign in to HackerOne. To set up SSO via SAML for Okta:

Click the Applications &gt; Applications

Give the APP a name and optionally a logo and click Next

- Single sign-on URL: <a href="https://hackerone.com/users/saml/auth" rel="nofollow noopener noreferrer" target="_blank">https://hackerone.com/users/saml/auth</a>
- Audience URI (SP Entity ID): hackerone.com
- Name ID format: EmailAddress
- Application username: Email
- Add the following three Attribute Statements
 1. User.firstName, Unspecified, user.firstName
 2. User.lastName, Unspecified, user.lastName
 3. User.email, Unspecified, user.email
- Update application username on: Create and update

On step 3 select: This is an internal app that we have created.

Click View SAML setup instructions on the Sign On tab to see the SAML 2.0 config values. Keep this page open for setting up SAML for HackerOne in the later steps.

<a href="https://www.hackerone.com/" rel="nofollow noopener noreferrer" target="_blank">Open HackerOne</a> in a new tab.

Follow the SAML setup instructions<a href="https://docs.hackerone.com/organizations/single-sign-on-sso-via-saml.html"> here</a>.

- Copy the Single Sign-On URL and the Signing Certificate from the “Sign On settings” page that you accessed in step 10 and paste them into the corresponding fields during setup.

In OKTA you can Assign the HackerOne application to the people or groups that should have access to the application on the Assignments tab.

1. Log in to Okta.
2. Click the Applications &gt; Applications
 Okta applications menu
 
3. Click Create App Integration
4. Select SAML 2.0 and click Next
5. Give the APP a name and optionally a logo and click Next
6. ​Fill in the next SAML Settings values
 - Single sign-on URL: <a href="https://hackerone.com/users/saml/auth" rel="nofollow noopener noreferrer" target="_blank">https://hackerone.com/users/saml/auth</a>
 - Audience URI (SP Entity ID): hackerone.com
 - Name ID format: EmailAddress
 - Application username: Email
 - Add the following three Attribute Statements
 1. User.firstName, Unspecified, user.firstName
 2. User.lastName, Unspecified, user.lastName
 3. User.email, Unspecified, user.email
 - Update application username on: Create and update
 SAML Settings screen
 
7. Click Next
8. On step 3 select: This is an internal app that we have created. 
 Edit SAML integration window
 ​
9. Click Finish.
10. Click View SAML setup instructions on the Sign On tab to see the SAML 2.0 config values. Keep this page open for setting up SAML for HackerOne in the later steps.
11. <a href="https://www.hackerone.com/" rel="nofollow noopener noreferrer" target="_blank">Open HackerOne</a> in a new tab.
12. Follow the SAML setup instructions<a href="https://docs.hackerone.com/organizations/single-sign-on-sso-via-saml.html"> here</a>.
 - Copy the Single Sign-On URL and the Signing Certificate from the “Sign On settings” page that you accessed in step 10 and paste them into the corresponding fields during setup.
13. In OKTA you can Assign the HackerOne application to the people or groups that should have access to the application on the Assignments tab. 
 Assign HackerOne application in Okta