Logging in with single sign-on through Okta (Enterprise)

Enable members of your organization to access your account using a secure and streamlined login method.

Last updated February 9, 2024

If you’re on our Enterprise plan, you can set up single sign-on (SSO) with Okta. Follow the steps in this guide to set up Okta for your Squarespace Enterprise organization. This will enable your team to log in through SSO to manage and edit your websites from your Enterprise dashboard.

To set up Okta as a login method for viewing private sites and pages, visit Setting up single sign-on (SSO) protected sites and pages.

Accessing this feature

This feature is for Enterprise customers only. It's not available for other plan levels and it doesn't apply to Acuity Scheduling Enterprise accounts.

Supported features

Requirements

The Okta SSO integration is available to customers on our Enterprise plan. To set up the integration, you need to be an admin in your Okta organization.

Configuration steps

Add Squarespace to your Okta organization

Before you can set up the Okta SSO integration in Squarespace, you need to add Squarespace as an application in your Okta organization.

  1. In the Admin view of your Okta organization, click Add Application, search for Squarespace, then click Add.
  2. Enter an Org Name in General Settings. This is used by Squarespace to create a unique sign-on URL to link from your Okta dashboard. The URL will look like https://account.squarespace.com/org/example, with your org name in place of example.
  3. Click Done.
  4. In the Sign On tab, copy the Client ID and Client Secret. You'll need these values, along with the Okta Issuer URL (https://example.okta.com) to finish the set-up in Squarespace.  

Set up Okta SSO in Squarespace

To set up the Okta SSO integration in Squarespace: 

  1. Go to account.squarespace.com. If prompted, log into your account using your business email.
  2. Click Personal in the top-right corner, then select your organization's name from the drop-down menu.
  3. In the top navigation menu, click the Preferences tab.
  4. In the SSO details section, click Add Credentials, then select Okta from the drop-down menu. 
  5. Enter your client ID, client secret, and single sign-on URL. 
  6. Give your SSO login an internal name, then click Save SSO

Note

If you can't set up the Okta integration, you can contact your Squarespace Account Manager for help.

Assign users

To give users access to the Squarespace SSO, click the Assignments tab, then click Assign. Ensure the User Name field is a valid email.

Assigned users can log into Squarespace via SSO through the Squarespace app on their Okta dashboards. Keep in mind, accounts won't be created in Squarespace until the initial SSO login.

Set up SCIM (optional)

With SCIM user provisioning, user accounts in Okta sync with accounts in Squarespace. For example, when your users update their name or email address in Okta, those changes also happen in their Squarespace account.

To get started, contact us to receive a SCIM API key.

Supported features

  • Create users
  • Update user attributes
  • Deactivate users

Supported SCIM user attributes

  • id (Squarespace user ID)
  • locale
  • firstName
  • lastName
  • displayName
  • active
  • externalId (ID passed to Squarespace from Okta)
  • userName (email address in Squarespace)
  • emails (limited to size 1 - same as userName)

Set up

  1. After receiving your SCIM API key from your account manager, click the Squarespace app in your Okta dashboard, then click the Sign In tab and select Email in the Application username format.
Set_the_username_format_to_Email.png
  1. Click the Provisioning tab, then click Configure API Integration.
Click_Configure_API_Integration.png
  1. Check Enable API integration and enter your SCIM API key from Squarespace.
Enter_the_SCIM_API_key.png
  1. Click Test API Credentials to ensure the integration can connect successfully.
  2. Click Save.
  3. In the To App section under Provisioning, select the actions you want to enable Okta to perform, such as Create UsersUpdate Users, and Deactivate Users, then click Save.
Select_what_actions_Okta_should_be_able_to_perform.png

Troubleshooting

If you run into any issues please contact Squarespace support or your account manager.

Automatic permissions (optional)

On sites protected with SSO, you can use Okta groups to automatically grant users specific Squarespace permissions. Currently, only Admin and Website Editor permissions are supported. To learn more about permissions, visit Squarespace permissions explained.

To do this:

  1. Create Native Okta groups with the names app_squarespace_admin and app_squarespace_editor. Group names must be exact to work.
  2. Add users who should be Admins and Website Editors to each respective group.
  3. The first time a user in one of the groups logs in to your Squarespace site, they will automatically get the designated permissions.

Alternatively, existing contributors with Admin permissions can add contributors manually, as long as the contributors are part of your Okta org and have been assigned the Squarespace SSO.

Notes

SSO login

Contributors can log in with SSO through the Squarespace login screen on a computer. After typing in their email address, an SSO button will replace the password field.

They can also log in through their Okta dashboard, or by bookmarking the URLs specific to your org that match the following formats, replacing example with the org name or built-in site URL:

  • https://account.squarespace.com/org/example
  • https://example.squarespace.com/config (if your site is protected by SSO)

 

Footer Image
  • Get help from our community

  • Get help from our community on advanced customizations.

  • Hire a Squarespace Expert

  • Stand out online with the help of an experienced designer or developer.

Logging in with single sign-on through Okta (Enterprise)