<aside> 💡 For Cloud customers, please refer to the Cloud documentation instead.

</aside>

<aside> 💡 Every step after #1 should use secoda as the realm instead of master.

</aside>

Setup

  1. Go to https://secoda.company.com/auth/admin/master/console/#/realms/secoda, sign in with the username admin and Keycloak password you added to the onprem.tfvars file and make sure you are on the Secoda Realm (not Master) by clicking the top left.
  1. Pick an alias, i.e. lower (in lowercase). This is usually your company name in lowercase.
  2. Click on the Clients tab on the left. Click the Create button.
  3. Set the following (in lowercase) and then click Save.
  4. Then set the following values and click Save:
  1. Then click on Identity Providers ****in the left hand navigation menu of Keycloak.
  2. Click "Add provider..." and select SAML v2.0.
  1. Use the <lower> alias from earlier. Leave the defaults and click Save.
  1. Open a new window and go to your Okta administrator console: https://<YOUR_COMPANY>.okta.com/admin/apps/active
  2. Then click Create App Integration.
    1. Choose SAML v2.0.
    2. Name the app Secoda and click Next.
  1. Fill in the following URL, if you followed our naming conventions – it should look something like this:
https://<YOUR_COMPANY>.secoda.co/auth/realms/secoda/broker/<lower>/endpoint/clients/<lower>