A Complete Guide

To set up Okta SSO, follow the instructions below.

Contents

1. Requirements
   
   
2. Supported Features
   
   
3. Okta Configuration Steps
   ‍
4. Logging Into OpenPolicy Using Okta
   ‍
   

1. Requirements

• Admin access to an Okta organization.
  

2. Supported Features

• Service Provider (SP)-Initiated Authentication (SSO) Flow: This authentication flow occurs when the user attempts to log in to the application from OpenPolicy.
  
  

Note: User federation, role management, etc., are not supported. Users and their OpenPolicy roles will still need to be managed from the OpenPolicy settings page.

* Assigning users in Okta does not auto create the user in OpenPolicy, the organization admin in OpenPolicy must create the user in OpenPolicy as well as the Okta assignment. 

3. Okta Configuration Steps

1. In Okta, navigate to Applications → Browse App Catalog, search for and add OpenPolicy.
   
   
2. Assign the users or groups that should be able to log into OpenPolicy.
   
   
3. Go to the OpenPolicy App → Assignments tab
4. Click the “Assign” button
   
   • Choose People if you wish to add specific people access to OpenPolicy
   • Choose Group if you want to give access to OpenPolicy to anyone in a specific group.
5. Anyone that is assigned via Okta should be included in a list of emails sent to your OpenPolicy representative so that they could be configured to work.
   ‍
6. Go to Applications -> OpenPolicy and provide your OpenPolicy representative with the following:
   
   1. Okta Domain
   2. Client ID
   3. Client Secret

4. Logging Into OpenPolicy Using Okta

1. After being invited to OpenPolicy, go to https://app.openpolicy.co/
2. You will be prompted for your email, you must use your organizational email that was included in the list above.
   
   

That’s it, should any questions arise don’t hesitate to contact your OpenPolicy representative. 

‍