Login to your Okta Admin portal and navigate to Applications. Click Add Application.
On the left side, Select Create a New App
Choose SAML 2.0 and click Create.
Name the app and click Next.
authorization domain /cdn-cgi/access/callback on Single sign on URL and SP Entity ID fields.
Choose the value you want to be passed as the Name ID. In the attribute statement create a new attribute called email and pass the email of the user as value.
Click next and finish.
Next you need to assign groups or users who can access the application. Click on assignments tab and choose users or groups.
Navigate to the Sign on tab to get the identity provider information.
Scroll to the bottom and copy the metadata and save it as save it as an xml file. say sp-metadata.xml.
Navigate to the access tab and upload the metadata.
If you choose to enter manually, Enter the following information in the Cloudflare Access modal.