Configuring Your Okta SSO Provider

From TeamServer ER/Studio
Jump to: navigation, search

Go Up to Setting Up Single Sign On (SSO)

Use the following steps to configure your Okta authentication process:

  1. Create an account at https://www.okta.com/.
  2. Once in the Okta application, expand the Security menu, and then click API as shown in the following image. Your available Authorization servers appear in this list or you can create a new auth server.
    ERTS 203 Okta Security API.png
  3. If you want to edit an existing server, click the Edit icon for that server or click directly on the server name. You are directed to a server details page where you can make your changes. If you want to create a new server, click Add Authorization Server, and continue with the next step.
    ERTS 203 Okta Add Auth Server Button.png
  4. In the Add Authorization Server dialog that appears, complete the available fields.
    ERTS 203 Okta New Test.png
  5. Note the information displayed in the Settings tab for the Authorization server you just created, such as the following image. The Metadata URL appears in the following format as this example: https://[DOMAIN]/oauth2/[xxxxxx]/.well-known/oauth-authoriation-server. The [DOMAIN] and [xxxxxx] are what you will add as your Authorization in ER/Studio Team Server. This information also appears in the Issuer URL field in the API page in Okta.
    ERTS 203 Okta New Auth Server.png
  6. Click the Scopes tab. This page displays a list of pre-existing scopes. It is recommended to NOT delete any existing scope.
    ERTA 203 Okta Scopes.png
  7. Click Add Scope. In the Add Scope dialog that appears, complete the available fields before clicking Save. Note the name of the scope as that is used in Team Server.
    ERTS 203 Okta Scope.png
  8. Once you save your new Scope, you must add a policy. Click the Access Policies tab. Policies and rules are required for clients to access this Authorization server.
    ERTS 203 Okta Add Policy.png
  9. Click Add Policy.
    ERTS 203 Okta Add Policy dialog.png
  10. Complete the available fields, and then select whether you want this policy to apply to All Clients or only to clients that you enter in the available box.
  11. Click Create Policy. The system creates your new policy, to which you now must add rules.
  12. In the policy you just created, click Add rule.
    ERTS 203 Okta New Poilicy Add Rules.png
  13. Complete the available fields to create your new rule. Make sure to use a name that describes what the rule does.
    ERTS 203 Okta New Poilicy Add Rules.png
  14. Once you click Create rule, your new Authorization server and all supporting items are ready for use in the Team Server Configurator when setting up Okta as your SSO provider.

Note: The Authorization Server is case sensitive, Please make sure to copy the correct case over to Team Server configurator

Creating a New user Account in Okta

Use the following steps to create a new user account in Okta.

  1. Once in the Okta application, expand the Directory menu, and then select People.
  2. Click Add person, as shown in the following image.
    ERTS 193 Okta Users.png
  3. Complete the appropriate fields to create a new user account, and then click Save. If you are creating multiple users, use Save and Add Another as a shortcut to creating the next user account.

See Also

Retrieved from "https://docwiki.embarcadero.com/TeamServer/ERStudio/203/e/index.php?title=Configuring_Your_Okta_SSO_Provider&oldid=10037"