This guide will walk you through the steps to set up Okta for integration with Corti. Follow the instructions below to configure and enable Okta for Single Sign-On (SSO).
Step 1: Log In to the Okta Admin Console
Log in to your Okta Admin Console.
Navigate to Applications and click Create App Integration.
Step 2: Create an OIDC Application
Choose OIDC β OpenID Connect as the sign-in method.
Select Web Application as the application type.
Click Next to proceed.
Step 3: Configure OIDC Settings
Grant Types:
Enable the following grant types:Client Credentials
Authorization Code
Interaction Code
Refresh Token
Implicit (hybrid)
Redirect URIs and Sign-out Redirect URIs:
Enter the values provided by Corti. These URIs are unique to your environment and must be configured correctly.Refresh Token Behavior:
Set the Refresh Token behavior to Use Persistent Token.
Step 4: Note Down the Client ID and Client Secret
Once configured, the application will generate a Client ID and Client Secret.
Securely share these details with Corti through an approved secure communication channel.
Step 5: Assign Users to the Application
Assign the appropriate users or groups to the application in Okta to ensure they have access.
Step 6: Scopes and SSO Details
Ensure that the following default scopes are configured:
openid
profile
email
Supported SSO Method:
Corti only supports Service Provider (SP)-initiated SSO.
Users can directly log in to the application through Corti's/sso
endpoint.Note: This URL is custom for each environment and can be bookmarked as the application URL for internal tool catalogs.
Need Help?
If you encounter any issues or have questions during the setup process, please reach out to our support team through the chat widget or email us at [email protected].