All Categories
  • Authentication
  • Branding
  • Changelogs
  • Collaboration
  • Compliance
  • Customization
  • Desktop Client
  • External Storage
  • Frequently Asked Questions
  • Installation
  • Operations
  • Partner Products
  • Scalability
  • Security
  • Nextcloud Single-Sign-On with Okta

    This article describes how to use configure Okta to use it as a Single-Sign-On provider with Nextcloud.

    The following guide will show you how to use Okta as a Single-Sing-On provider for Nextcloud. In case you have specific issues with configuring your Nextcloud system, please open a support ticket in our support portal.


    Before you continue please make sure that:

    • An account at
    • A supported version of Nextcloud and you have the required privileges to enable the Nextcloud user_saml app (shipped with Enterprise edition).

    We will need a X509 certificate and the corresponding public certificate which will be used by Nextcloud to sign outgoing requests to Okta. If you don't have such a certificate you can generate it with following openssl command:

    openssl req -newkey rsa:2048 -nodes -keyout key.pem -x509 -days 365 -out certificate.pem

    The private key will be stored on key.pem and the X509 certificate in certificate.pem. We will need the certificate.pem for both, the Okta and Nextcloud configuration and the key.pem for the Nextcloud configuration.