# Single Sign-On with Okta
Follow this guide to set up Single Sign-On (SSO) in Dataimporter with Okta. This will let you control which users have access to Dataimporter, restrict access to SSO, provision new users via Just-in-Time (JIT) provisioning.
## 1. Enable SSO in Dataimporter
1. In Dataimporter, head to the Account Settings page and toggle SSO on.
2. In the SAML Name field enter the name as you would like it to appear e.g. `Acme`
3. In the Domain field enter your corporate company name e.g. `acme.com`.
4. Keep this tab open and open another tab to perform the next steps.
## 2. Add Dataimporter to Okta
1. Log in to the Okta and click on Applications
2. Click on Create App Integration.
3. Select SAML 2.0 and click Next.
4. Give the app the name `DATAIMPORTER`, upload a Logo (optional), and click Next.
5. In the Audience URI (SP Entity ID) field, add the value that you added in Step 2 of the Dataimporter configuration e.g. `Acme`
6. In the Single sign-on URL section enter the URL in the following format https\://{instance}.dataimporter.io/saml/login/{identifier} e.g. `https://app.dataimporter.io/saml/login/Acme`
7. Make sure you Check the box for `User this for Recipient URL and Destination URL`
8. Scroll down to Attribute Statements and populate the following values.
9. Scroll to the bottom of the page and click `Next`.
10. Under the Feedback section select the option `I'm an Okta customer adding an internal app` and click the checkbox for `This is an internal app that we have created`. Click `Finish`.
11. Click on `Assignments` -> `Assign` -> `Assign to People`
12. Add any users who need access to Dataimporter.
13. Click back on the `Sign On` tab and scroll down to the `SAML Signing Certificates` section.
14. Click on `Actions` next for the `SHA-2` type, and click on `Download Certificate.`
15. Click on `View IdP metadata`
## 3. Configuring SSO in Dataimporter
1. Copy the `entityId` value.
2. Open the tab in Dataimporter and paste the value into the Provider Entity Id field.
3. Open Okta and copy the Single Sign On Location value.
4. Open the tab in Dataimporter and paste the value into the Log In URL field.
5. Open the downloaded Certificate in a text editor and copy the entire value.
6. Open the tab in Dataimporter and paste the value into the X509 Certificate field.
7. Click on Save.
8. Contact Dataimporter Support to validate and enable SSO for your Organization.
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://help.dataimporter.io/security/single-sign-on-with-okta.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.