Setup Malwarebytes cloud platform single sign-on with Okta

Document created by jgolomb Employee on Aug 29, 2018Last modified by jgolomb Employee on Nov 8, 2019
Version 13Show Document
  • View in full screen mode

The following instructions will assist the iDP Administrator with the setup of single sign-on (SSO) for Malwarebytes Administrators into the Malwarebytes Cloud portal using Okta. Malwarebytes Cloud only supports SAML 2.0 authentication protocol. 


Get started

  • The email address used for the cloud account must match the email address used for Okta.

  • Log into and go to the Settings > Single Sign-on page.

  • Log into your Okta Administrator portal and go to the AdminApplications page.

  • Ensure your environment meets the minimum operating system and external access requirements. Refer to Malwarebytes Cloud Platform Administrator Guide for details.


Add the application in Okta - General Settings

  1. From the Applications page in Okta, click Add App > Create New App.
    Image of Create New App button in Okta.

  2. In the Create a New Application Integration dialog that opens, (A) select Web from the Platform dropdown menu > (B) check SAML 2.0 > (C) click Create.
    Image of Okta Create a New Application Integration menu.

  3. On the following screen, (A) name the app in the App name field (for example, Malwarebytes Cloud Portal) > (B) click Next.
    Image of General App Settings in Okta.

Setup Okta SAML Settings

  1. On the Malwarebytes Cloud Single Sign-On page, copy the url text next to Assertion Consumer Service URL.
    Image of Malwarebytes Service Provider Details.

  2. Paste the copied url into the Single sign on URL field in Okta.
    Image of SAML Settings in Okta.

  3. On the Malwarebytes Cloud Single Sign-On page, copy the url text next to Service Provider Entity ID.
    Image of Malwarebytes Service Provider Details.

  4. Paste the copied url into the Audience URI (SP Entity ID) field in Okta.
    Image of SAML Settings in Okta.

  5. Leave Default RelayState field blank.

  6. Set Name ID format field to EmailAddress.

  7. Set Application username field to Okta username.

  8. (A) Type email in the Name field > (B) set Name format to URI Reference > (C) type in the Value field.
    Image of Attribute Statement in Okta.

  9. Click Next.

Upload Okta SSO XML file into Malwarebytes cloud

  1. Right-click Identity Provider metadata and select Save link as... to download the metadata.xml file in Okta.
    Image of Identity Provider metadata in Okta.

  2. Name the file > click Save.

  3. On the Malwarebytes Cloud Single Sign-On page, drag the .xml file or Choose a Different File to upload the Identity Provider (iDP) Metadata.
    Image of Uploading New Metadata XML file in Malwarebytes cloud.

  4. Once the .xml file is uploaded, you can set Enable Single Sign-On (SSO) to ON.

  5. Now the application can be assigned to your Malwarebytes Cloud administrators in Okta.


Additional information