Step 1: Login to your Okta Admin portal and navigate to Applications. Click Add Application.
Step 2: On the left side, Select Create a New App
Step 3: Choose SAML 2.0 and click Create.
Step 4: Name the app and click Next.
Step 5: Enter your
authorization domain /cdn-cgi/access/callback on Single sign on URL and SP Entity ID fields.
Choose the value you want to be passed as the Name ID. In the attribute statement create a new attribute called email and pass the email of the user as value.
Step 6: Click next and finish.
Step 7: Next you need to assign groups or users who can access the application. Click on assignments tab and choose users or groups.
Step 8: Navigate to the Sign on tab to get the identity provider information.
Step 9: Scroll to the bottom and copy the metadata and save it as save it as an xml file. say sp-metadata.xml. Navigate to the access tab and upload the metadata.
Step 10: If you choose to enter manually, Enter the following information in the Cloudflare Access modal.
Step 11: Finally enter email as Email attribute in SAML assertion field. Click save and close.