Nextcloud Single-Sign-On with Okta

This article describes how to use configure Okta to use it as a Single-Sign-On provider with Nextcloud.


The following guide will show you how to use Okta as a Single-Sing-On provider for Nextcloud. In case you have specific issues with configuring your Nextcloud system, please open a support ticket in our support portal.




Before you continue please make sure that:


  • An account at
  • Nextcloud 14.x or later is used as Nextcloud instance and you have the required privileges to install the Nextcloud user_saml app from the appstore.


We will need a X509 certificate and the corresponding public certificate which will be used by Nextcloud to sign outgoing requests to Okta.  If you don't have such a certificate you can generate it with following openssl command:


openssl req -newkey rsa:2048 -nodes -keyout key.pem -x509 -days 365 -out certificate.pem


The private key will be stored on key.pem and the X509 certificate in certificate.pem. We will need the certifica

Attached Files
There are no attachments for this article.