Migrating LDM to Okta
To migrate LDM to OKTA, follow these steps outlined below.
- In your
Lenovo Device Manager portal, click User Profile in the
top right-hand corner and navigate to Organization Account.
Note: This option is available only for Owners.
- In Organization
Account, under Authentication, click Change provider and
follow the on-screen instructions.
- In the
Authentication Provider section, select Okta, then click Next.
- Log in
to Okta at https://okta.com/login.
- Go to Applications
and click Create App Integration.
Note: Create a new app if there is already an app listed.
- Select
SAML 2.0 as the sign-on method and create a new application.
- In Create
SAML Integration, under General Settings, enter the App Name.
- In the
Configure SAML step:
- Enter the Attribute
Statements as shown below.
- Fill the other required
fields (e.g., Single Sign-On URL, Audience URI) with
temporary/random values, as they will be updated later The Attribute
Statements will be required again during the Additional Info
step.
- Complete
the application creation process.
- In the
SAML Signing Certificates section, from the Actions
dropdown, select View IdP metadata.
The IdP metadata will open in a new browser tab.
- Download
the page information to your computer. This file will serve as the IdP
Configuration file, which is required to change the organization's
authentication type to OKTA.
- To
allow users to log in with OKTA:
- Create and assign users to your OKTA app.
- Add the same users to the software portal.
Note: The email addresses must match exactly in both the Portal and OKTA.
- To add
a user:
- Navigate to Directory > People.
- Click Add Person, fill in the required
fields, and click Save.
- In the
Additional Info window:
- Enter the User ID SAML attribute (either
givenName or email).
- Upload the IdP configuration file you
downloaded earlier.
- Verify that all user emails are correct. Update them if necessary.
- Copy
the Redirect URL.
This is required during OKTA setup process within OKTA (https://okta.com). Click Close to complete the SSO setup process. - Paste the Redirect URL, copied from Step 16, into Single Sign-on URL and Audience URI to complete the SSO setup.
- OKTA setup is complete.
Related Articles
Migrating LDM to Azure
This guide explains how to migrate Lenovo Device Manager (LDM) to Microsoft Azure using Microsoft Entra ID. This process involves setting up a new app in Azure, collecting necessary configuration data, and updating the authentication settings in LDM. ...Customizing LDM Portal
Lenovo Device Manager (LDM) offers the customization capability to administrators to select specific devices, OS, and device management features within a specific organization's LDM instance. For new organization(s), LDM supports all devices and ...Deploying an Application
LDM allows users to deploy applications to specific devices or to a group of devices. One or more applications can be deployed to a device or group of devices from this page. Apps that are in the Clean state can only be deployed to devices/device ...Managing Devices Within Lenovo Device Manager
Devices represent the various types of devices that are in your organization and typically used by employees. A device type can fall under any of the following categories: You can onboard one or more devices to LDM platform through the Device ...About Accessibility in LDM
For an improved web browsing accessibility experience, consider the following combinations: Microsoft Edge with Windows Narrator: This combination is recommended because Edge directly supports the UI Automation (UIA) framework, providing enhanced ...