SSO with Okta for enterprise users

Enterprise users in Prelim have the ability to configure a default Identity Provider to power Single Sign On (SSO). This article details how to configure Okta as the primary Identity Provider to facilitate SSO with the Prelim application for enterprise users.

Supported Features

The Okta/Prelim OIDC integration currently supports the following features:

IdP-initiated SSO
SP-initiated SSO
JIT (Just In Time) Provisioning
For more information on the listed features, visit the Okta Glossary.

Requirements

In order to proceed with configuring login with SSO through Okta, you must:

Have access to an Okta tenant
Be an Okta administrator to that tenant
Have access to Prelim as an enterprise user with the SSO Admin permission

Configuration Steps

Sign in to your Prelim Admin Console and navigate to https://[hostName]/dashboard/organization/enterprise-sso where [hostName] is your Prelim host name.
On the Enterprise SSO page, enter the following:
Protocol: Open ID Connect

Discovery: Sign into the Okta Admin dashboard to generate this value.

Client ID: Sign into the Okta Admin dashboard to generate this value.

Client Secret: Sign into the Okta Admin dashboard to generate this value.

Default Role ID: The role ID
On the Enterprise SSO page, you'll want to copy the following into the Okta Admin dashboard.

Authorization Callback: Copy from the Enterprise SSO page into the Okta dashboard.

Login URL: Copy from the *Enterprise SSO page into the Okta dashboard.
Click save

5 Done!