Okta Integration Network - Production SSO App

07/2023

Overview

You can enable SSO from your organization's Okta instance to your Oort tenant by installing the Oort Identity Security App from the Okta App Catalog.

NOTE - The Oort Identity Security app in the Okta Integration Network currently only supports Production Oort tenants. You cannot use the Oort OIN app to create SSO connections for Staging tenants.

Oort typically conducts evaluations and Proof of Value (POV) engagements in the Preview (staging) environment. For instructions on how to configure Okta OIDC SSO for Preview environments, please see this article. Please consult with your Oort representative or email support@oort.io with any questions.

Supported Features

  • Service Provider (SP) - Initiated Authentication Flow - When a user is logging in from the Oort platform.

Requirements

To configure Oort SSO through Okta, you will need:

  • Admin Access to an Okta tenant

Configuration Steps

Configuring Okta as the identity provider for Oort will redirect users logging in to your Oort tenant to an Okta logic screen. After authentication, the users will be redirected back to the Oort platform. You will also be able to add an "Oort" button to your users' "My Apps" page in Okta.

Add the Oort App to Okta

Login to your organizationโ€™s Okta tenant.

  1. Navigate to the Admin console.

  2. Navigate to Applications > Applications > Browse App Catalog. Search for Oort Identity Security, and then click Add.

  3. Enter an Application Label in General Tab. Note - This is the name under which the Oort Identity Security app will appear in your Okta dashboard.

  4. Click Done.

  5. Go to the Sign On tab of the Oort Identity Security App

  6. Copy the Client ID and Client Secret.

Note: The Client ID is a public identifier for the client that is required for all OAuth/OIDC flows. The Client Secret is a private identifier which you should not share or broadly distribute.

Assign users to the Oort Identity Security App

Assign users (ideally through groups) to the Oort Identity Security App:

  1. Go to Applications > Oort Identity Security > Assign and then assigning to either the target people or group.

Send the Client ID and Client Secret to Oort Support

If you are not already communicating directly with a member of the Oort Customer Success or Support team, please reach out to support@oort.io to securely transfer the Client ID and Client Secret via a means of secure communication of your choice.

Logging in to your Oort Tenant with Okta SSO

Once Oort Support has completed the configuration within your tenant, they will provide you with a tenant-specific logon URL which references your Okta SSO connection.

Alternatively, you can login via the following method:

  1. In a browser, navigate to https://dashboard.oort.io

  2. Enter your tenant's organization name (provided by Oort Support, for example "CompanyABC-prod")

  3. Click the โ€œContinue with CompanyABC Okta SSOโ€ option

  4. You will be redirected to Okta to complete authentication

  5. After successful authentication with your Okta tenant, you will be redirected to the Oort dashboard

Last updated