Content is translated from English using DeepL Pro.
Required plan:
DeepL Pro Advanced, Team, Ultimate, Business, Enterprise, Voice for Conversations, Voice for Meetings or Write Pro
These setup instructions are only available in English.
Prerequisites
- Admin access to DeepL
- Protocol: SAML 2.0
- Identity provider: Okta
- A SSO domain has been defined in the Single sign-on section of your DeepL admin account. For more information, see this article.
You have to options to provision users after setting up SSO for your team.
Set the SSO configuration in Okta
- Go to your Okta instance and open the Applications section.
- Click on Create App Integration in the top panel
- Select SAML 2.0 and click Next.
- Enter DeepL SSO under Application label.
- Upload the DeepL icon.
- Select Do not display application icon to users and Save.
-
Under Sign-in redirect URIs enter
https://w.deepl.com/auth/realms/prod/broker/ALIAS/endpoint(Replace ALIAS with your chosen company SSO domain. The ALIAS value can be found under Company SSO domain in the SSO configuration area in your DeepL account.)
-
Under Audience URI enter
https://w.deepl.com/auth/realms/prod - Set the Name ID format to Persistent
- Under Attribute Statements enter the following
- Click Next.
- Confirm that you're using the application as an internal app in the next step and click Finish.
Get the XML information for the connection
- In your Okta instance and the application for DeepL access, go to the Sign On tab
- Click on View SAML setup instructions.
-
Scroll down to the bottom and copy the XML text under Optional and save it as an xml file.
Use a text editor like Notepad or Visual Studio Code to save the XML file and ensure its validity when uploading it to your DeepL admin account. Do not use a rich text editor like Microsoft Word or TextEdit.
Set the SSO configuration in DeepL accounts
- Go to the Settings tab in your DeepL admin account.
Under Team and Single sign-on the SSO domain has the status Domain name approved. - Click Set up SSO next to Single sign-on.
In the Set up SSO form select SAML as the Authentication type - Select Import from file and upload the xml file you've saved from your Okta SAML configuration
- Set NameID policy format to Persistent
-
Enter the following
- Assertion attribute: First name = firstName
- Assertion attribute: Last name = lastName
- Assertion attribute: Email address = email
Create a bookmark for your app
- Open the Applications section and click on Browse App Catalog.
- Search for Bookmark App and add the app.
- Click on Add Integration.
- Add the following information.
- Application label: DeepL SSO
-
URL: https://ALIAS.sso.deepl.com
(Replace ALIAS with your chosen company SSO domain. The ALIAS value can be found under Company SSO domain in the SSO configuration area in your DeepL account.)
You have two options to provision users after setting up SSO for your team.
If you only setting up SSO, test the configuration with a test user and activate SSO in your DeepL admin account.