Single Sign-on (SSO) Authentication with Okta

In this article, you'll learn how to set up Single Sign-On (SSO) authentication with Okta. To learn more about enabling SSO authentication in OfficeRnD Hybrid, take a look at the Single Sign-On (SSO) Authentication article

Keep in mind that when you activate an SSO authentication, the following OfficeRnD Hybrid authentication services are disabled:
  • The standard login with an OfficeRnD Hybrid user and password
  • The "Reset password" links in OfficeRnD Hybrid
  • The token for authentication which employees receive when invited to the Members Portal. 

 

Enable SSO with Okta

  1. Open https://developer.okta.com
  2. Go to Applications and Create App Integration.
  3. Choose OIDC - OpenID Connect. Please note we do not support other protocols.
  4. Then select Web Application.
    mceclip0.png
  5. Click Next.
  6. Give your Okta app a meaningful name.
  7. Open your OfficeRnD Hybrid and navigate to Settings/Integrations.
  8. Expand Authentication and activate SSO Authentication.
  9. Click Configure.
  10. In Okta, enter the following in the Base URL: https://hybrid.officernd.com
  11. Copy the Return URL from OfficeRnD and paste it into Sign-in redirect URIs. Sign-out redirect URIs is optional but in case you need to fill that in, please use the same URL and replace /return with /log-out.
  12. In Okta, select a Controlled access option from the last tab called Assignment.
  13. Save the Application.
  14. Copy the Client ID and Secret from Okta and paste them into the respective fields in OfficeRnD.
  15. Finally, enter the Discovery URL in OfficeRnD using your Okta Domain. The URL should follow this syntax: {{okta domain value}}/oauth2/default/.well-known/openid-configuration. E.g.: https://dev-8934962.okta.com/oauth2/default/.well-known/openid-configuration
  16. Select Account Activation in OfficeRnD - optional - With this setting enabled - employees that already exist in OfficeRnD Hybrid will be allowed to log into the Portal without needing to be explicitly invited. If this setting is disabled - employees without prior access to the Portal will need to have it Enabled by an administrator.
    mceclip1.png
  17. Hit the Update button.

Now your Okta SSO integration is ready!

 

Was this article helpful?
0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.