Trying to integrate our organisation's web app with Okta's SSO.
Everything works smoothly except that I can't find a way to pass the native Okta groups which the user is part of in the assertion SAML (there's no such option in the 'Edit SAML Integration' form).
Any idea how to do that?
On
I came across this issue myself, and answered myself here
I added a very detailed explanation how it can be achieved
In short, you just need to specify a groups attribute statement to your Okta SAML 2.0 template specifying what groups you'd like to expose to your SP
To have Okta include group information into SAML assertions, you'll need to use the Okta Template SAML 2.0 App, in particular, you'll need to set the Group Name and Group filter options to configure which groups will be included in the SAML assertion.