Okta Integration Troubleshooting

WestOderman
WestOderman
in Modules

1 In Okta, create a Web and SAML 2.0 app. 

2 Set the Base URL to  http://[BASE PORTAL URL]/SAML/AssertionConsumer.ashx

3 Set Audience URI (SP Entity ID) to the base portal URL.

4 Set Name ID format to EmailAddress and click Next.

5 Select "I'm an Okta customer adding an internal app" then check the This is an internal app that we have created box. Click Finish to navigate to the Sign On tab.

6 In Decisions, navigate to System > Settings. Right-click Okta Settings and click Edit.

2024-08-14_09h44_37(1).png

7 On the Edit Okta Settings window, check the Enabled checkbox. 

2024-08-14_09h47_19.png

8 On the Sign-On tab of the Okta app, click the View Setup Instructions button.

9 Locate the Identity Provider Single Sign-On URL and X.509 Certificate values and enter them in the appropriate fields on the Edit Okta Settings window.

2024-08-14_09h53_54.png

10 The SP Issuer ID field can be set to the value of Identity Provider Issuer or any other value of choice.

11 Supply the Okta Subdomain or URL and an Okta API Token at the top of Okta Settings to automatically sync users & groups or to manage Okta accounts from Decisions. If the organization has is named myOrganization.okta.com, enter "myOrganization". If the organization is like dev-999999.oktapreview.com, enter " dev-999999.oktapreview.com". After all other fields are configured, click SAVE.

12 As the Okta app administrator, navigate to Security > API > Tokens > Create Token in Okta to generate API token.

13 Click OK to save settings.

14 Set EnableSingleSignOn to true in Settings.xml and restart SHM. Logins will now be handled by Okta.

image-1626206877533.png

from: https://documentation.decisions.com/v9/docs/okta-integration-troubleshooting

Sign In or Register to comment.

Howdy, Stranger!

It looks like you're new here. If you want to get involved, click one of these buttons!

Sign In Register

Categories