<aside> 💡 For cloud customers, always use the master realm in the url instead of secoda For example:https://org.secoda.co/auth/realms/master/broker/okta/endpoint/clients/saml

</aside>

<aside> 💡 Please confirm this is the correct Okta setup for your organization by contacting @Carter Sprigings first.

</aside>

Setup

  1. Go to https://secoda.company.com/auth/admin/master/console/#/realms/secoda, sign in with the username admin and Keycloak password you added to the onprem.tfvars file and make sure you are on the Secoda Realm (not Master) by clicking the top left.
  1. Click on the Clients tab on the left. Click the Create button.
  2. Set the following (in lowercase) and then click Save.
  3. Then set the following values and click Save:
  1. Then click on Identity Providers ****in the left hand navigation menu of Keycloak.
  2. Click "Add provider..." and select SAML v2.0.
  1. Name the alias okta (in lowercase). Leave the defaults and click Save.
  1. Open a new window and go to your Okta administrator console: https://<YOUR_COMPANY>.okta.com/admin/apps/active
  2. Then click Create App Integration.
    1. Choose SAML v2.0.
    2. Name the app Secoda and click Next.
  1. Fill in the following URL, if you followed our naming conventions – it should look something like this:
https://<YOUR_COMPANY>.secoda.co/auth/realms/secoda/broker/okta/endpoint/clients/saml