Configure Gorilla Expense for SAML Based SSO Using Okta
Step 1: Login to Okta as an Admin, go to Applications and click on "Create App Integrations"
Step 2: Select "SAML 2.0" option on your screen and click "Next"
Step 3: Name the App "Gorilla Expense" and Click "Next"
Step 4: Under SAML Settings>>General enter the URL's
"Single sign-on URL": https://www.gorillaexpense.info/gorillapro/web/user/logonSSOACS
"Audience URI (SP Entity ID)" : https://www.gorillaexpense.info/GorillaPro/Web/User/trust
Then click "Next"
Step 5: On "Feedback" tab click on "Finish"
Step 6: Click on the "Sign On" tab and then “View SAML Setup Instructions”
Step 7: Copy the "Identity Provider Single Sign-On URL" and the "X-509 Certificate" from this screen which will be used in steps below.
Step 8: Go to Gorilla Expense web application and login as an admin. If you do not have admin login credentials it would typically mean that you are not currently a customer of Gorilla Expense. You can contact support@gorillaexpense.com for a free trial so that we could provision an application instance for you and provide you with an admin username and password.
Step 9: Once logged in as Admin, go to Settings >>SAML Configuration to update the details:
1. Select Authentication Type as Okta,
2. Use the ""Identity Provider Single Sign-On URL" from Step 7 and past it in the field "IDP SSO URL"
3. Use the "X-509 Certificate" from Step 7 and paste in the corresponding field ""X-509 Certificate"
4. IDP SSO logout URL will have the same host as IDP SSO URL, but after the host please add “/login/signout” (refer to screen shot below) 
Step 10: Once SAML configuration is done go back to Okta and Sign-in. Then click on Gorilla Expense link. You will "Single-Sign-On" into Gorilla Expense. As an alternative, you could directly go to https://www.gorillaexpense.info/GorillaPro/web/User/LogOnGeneric to sign in.
Step 11: Assign the respective People under "Assignments" tab of the app who will be need a single sign-on using okta
