HELP FILE

Step #2: Add and Configure the LogMeIn Parent App in Okta

    Add the LogMeIn parent app and configure single sign-on settings.

    • Add the LogMeIn parent app.
      1. Sign in to your Okta admin portal.
      2. In the left navigation, select Applications > Applications.
      3. Select Browse App Catalog.
      4. Search for and select LogMeIn, then click Add.
      5. On the General tab, for the "Application label" enter a name (e.g., GoTo App).
      6. For the "Application visibility" settings, enable both of the Do not display application icon... settings.
      7. Select Next.
      8. On the Sign-On Options tab, select SAML 2.0 > View Setup Instructions.

        Result: The Parent Application Configuration instructions display.

    • Configure single sign-on for the LogMeIn parent app.
      1. Open a new web browser tab or window.
      2. Sign in to the Organization Center at https://organization.logmeininc.com.
      3. With the "Parent Application Configuration" instructions open on your other web browser tab, enter and/or configure the following settings:
        Setting Instructions
        How would you like to configure your SAML IDP? Select Manual.
        Sign-in page url Copy the "Location URL" value from the "Parent Application Configuration" instructions, then paste within this field.
        Remember: This value will also be used later in Step #4: Create Bookmark Apps for GoTo Products.
        Sign-in binding Select Redirect.
        Sign-out page url (optional) Copy this value from the "Parent Application Configuration" instructions, then paste within this field.
        Sign-out binding Select Post.
        Note: If you are configuring Single Logout, you also need to enable Single Logout in Okta (see Step #12 below).
        Identity Provider Entity ID Copy this value from the "Parent Application Configuration" instructions, then paste within this field.
        Verification certificate Copy this value from the "Parent Application Configuration" instructions, then paste within this field.
        Note: The verification certificate must include the following format (replace "Value added here" with the actual value):
        -----BEGIN CERTIFICATE-----
        Value added here
        -----END CERTIFICATE-----
        My identity provider has been updated with the new domain Enable this setting.

        Result: If you are not configuring Single Logout settings, proceed to the next article.

    • If you configure Single Logout, enable Single Logout in Okta (optional).
      1. Go to https://link.logmeininc.com/saml-cert to download and save the SAML certificate.
      2. Return to the Okta admin portal, then select the Sign On tab for the GoTo parent app.
      3. Select Edit > Enable Single Logout.
      4. Select Browse to locate the SAML certificate you downloaded and saved earlier, then select Upload to upload it to Okta.
      5. Select Save.
    You have added the GoTo parent app and enabled single sign-on with your desired settings.