Okta is one of the most popular IDaaS (Identity As A Service) providers used by businesses worldwide. In this article, we will cover the step-by-step process of setting up OpenID Connect (OIDC) Single Sign-On using Okta. You can learn more about how to set up OIDC SSO in Businessmap here.
Setting Up OIDC SSO with Okta
1. Head to your Okta Administrator Dashboard, select Applications, and click on the Applications tab.
2. Select “Create App Integration.”
3. For the sign-in method, click on OIDC - OpenID Connect. In the application type panel, select Web Application and click on Next.
4. Give the app a name and enter the:
- Sign-in redirect URls — 'https://{{subdomain}}.kanbanize.com/oidc/auth' and ‘https://{{subdomain}}.kanbanize.com/oidc/logout’
- Sign-out redirect URls — ‘https://{{subdomain}}.kanbanize.com/ctrl_logout/do_logout’
You can also enter a Base URL (i.e. 'https://{{subdomain}}.kanbanize.com') if you want to have a shortcut for the app on your Okta Dashboard.
5. If you don't have a special access setting, under Assignments → Controlled access, select “Skip group assignment for now” and click on Save.
6. After you have created your OpenID Connect app, you can access your Client ID and Client secret from the General tab. You will need to enter that data in Businessmap (Administration Panel → Integrations → Applications → OpenID Connect).
7. The sign-in and sign-out redirect URIs should contain:
'https://{{subdomain}}.kanbanize.com/oidc/auth' and 'https://{{subdomain}}.kanbanize.com/oidc/logout'
8. Navigate to the Sign On tab and select the “OpenID Connect ID Token” edit button.
9. From the Issuer dropdown, select the Okta URL. This is the Issuer URL that you need to enter into Businessmap.
10. Enter the redirect URL: https://{{subdomain}}.kanbanize.com/oidc/auth and the Logout redirect URL: https://{{subdomain}}.kanbanize.com/oidc/logout into Businessmap. Your complete integration would look like this:
11. That's it! Your users will now be able to log in to Businessmap through your Okta account.
Related articles: