Shopify

Trending searches:

How to integrate Shopify SAML SSO with Okta as Identity Provider?

29 views July 3, 2025 0

To integrate Shopify Single Sign-On (SSO) with Okta as an Identity Provider (IdP) for storefront users, you need to establish a SAML connection between Shopify and Okta. You must install an application such as miniOrange’s Single Sign-On application from the app store which allows your end users to auto-login into Shopify seamlessly.

Note: Our Shopify SSO application supports all SSO protocols, including SAML, OAuth, and OpenID Connect (OIDC).

Pre-requisites:

  • miniOrange Shopify Single Sign-On (SSO) Application: Link
  • Guide to configure SSO between Shopify and Okta: Link

1. Configure Shopify Plus as Service Provider (SP) in Okta:

Create SAML App Integration:

  • Sign in to your Okta admin dashboard.
  • Navigate to Applications >> Applications.
  • Click on Create App Integration.
  • Select SAML 2.0 as the Sign-On method and click on Next.

Configure General Settings:

  • Enter an app name, e.g., Shopify Plus SSO.
  • Click on Next.

Configure SAML Settings:

  • Enter the Single Sign-On URL (ACS URL) and Audience URI (SP Entity ID) obtained from the Shopify Plus SSO application.
  • Ensure Name ID format is set to Persistent.
  • To retrieve Okta metadata, go to the Sign-On tab and scroll to SAML Signing Certificates, then copy the Identity Provider Metadata URL.

Assign Users:

  • Assign the Shopify Plus SSO application to relevant groups or users in Okta.

2. Configure Okta as Identity Provider (IdP) in Shopify Plus:

  • Log into your Shopify Plus store and launch the Shopify Plus SSO application.
  • Select the SAML protocol and choose Okta from the list of identity providers.
  • Click on the Import IdP Metadata button and choose Metadata Link as the method.
  • Paste the Identity Metadata URL copied from Okta and click Import.
  • Add an IdP Name and click on Save.

3. Test Connection:

  • Test the integration with individual users assigned to the Shopify Plus SSO application in Okta.
  • Click on the Test Connection button and enter user credentials. A Test Successful pop-up will appear upon success.
  • Click on the Fetch Attributes button to retrieve Okta IdP attributes.

4. Test the SSO Integration:

  • Go to the Connect Store tab and copy the Client ID, Client Secret, Post-Logout Redirect URL, and Discovery Endpoint URL.
  • In your Shopify admin, go to Settings > Customer accounts.
  • Click on Manage in the Identity Provider section.
  • Click Connect to provider.
  • Enter your identity provider’s name.
  • Under Application info, fill in the Discovery endpoint URL, Client ID, Client Secret, Additional Scopes, and Post-logout Redirect URI.
  • Click Save.
  • Click Test Connection to confirm proper redirection to the customer login page. Log out and back in to verify.
  • Click Activate after a successful test.
  • Once activated, an Active badge will appear next to the IdP name in your Customer Accounts > Identity Provider section.

By following these steps, you can successfully configure SAML SSO in your Shopify Plus store using Okta as the Identity Provider, offering enhanced security and a smooth login experience.

For further assistance, please feel free to contact our team.

Was this helpful?

Related Articles

Hello there!

Need Help? We are right here!

support