SSO with Okta for enterprise users
Enterprise users in Prelim have the ability to configure a default Identity Provider to power Single Sign On (SSO). This article details how to configure Okta as the primary Identity Provider to facilitate SSO with the Prelim application for enterprise users.
Supported Features
The Okta/Prelim OIDC integration currently supports the following features:
- IdP-initiated SSO
- SP-initiated SSO
- JIT (Just In Time) Provisioning
For more information on the listed features, visit the Okta Glossary.
Requirements
In order to proceed with configuring login with SSO through Okta, you must:
- Have access to an Okta tenant
- Be an Okta administrator to that tenant
- Have access to Prelim as an enterprise user with the SSO Admin permission
Configuration Steps
-
Sign in to your Prelim Admin Console and navigate to https://[hostName]/dashboard/organization/enterprise-sso where [hostName] is your Prelim host name.
-
On the Enterprise SSO page, enter the following:
Protocol: Open ID ConnectDiscovery: Sign into the Okta Admin dashboard to generate this value.
Client ID: Sign into the Okta Admin dashboard to generate this value.
Client Secret: Sign into the Okta Admin dashboard to generate this value.
Default Role ID: The role ID
-
On the Enterprise SSO page, you'll want to copy the following into the Okta Admin dashboard.
Authorization Callback: Copy from the Enterprise SSO page into the Okta dashboard.
Login URL: Copy from the *Enterprise SSO page into the Okta dashboard.
-
Click save
5 Done!
Updated about 1 year ago