Okta: Set up and find SSO configuration information

Learn to set up and find the correct information to configure single sign-on for your Dotdigital account using Okta.

Before you start

This article is part of a process. Read the article Set up Single Sign-On (SSO) for your account in conjunction with this article.

Step 1: Create a new app

To create a new app in Okta:

  1. Log in to your Okta tenant admin.
  2. Go to Applications > Applications.
  3. Select Create App Integration.
  4. For Sign-in method, select OIDC - OpenID Connect.
  5. For Application type, select Web application.
  6. Select Next.
    This takes you to the Create OpenID Connect App Integration form.

okta-create_-app-1.png

Step 2: Set up your Okta application and find Client ID and Client server

From the Create OpenID Connect App Integration form, you can set up your Okta app and find your Client ID and Client server:

  1. Under GENERAL SETTINGS, for Application name, enter a name for your application.
    Use a name that's easy to identify, such as Dotdigital.
  2. For Grant type, select Authorization Code and Refresh Token.
    okta-grant-type-2.png
  3. For Sign-in redirect URIs, select + Add URI, and enter https://login.dotdigital.com/Sso/Authenticate.
    okta-redirect-uri-3.png
    You don't need to enter a value for Sign-out redirect URIs or the Trusted Origins section.
  4. For Assignments, select the policy that matches your security requirement.
    To get started quickly, you might want to Allow everyone in your organization to access.
  5. Select Save.
    This takes you to the general settings of your application.
  6. Under the heading Client Credentials, copy the Client ID and save it for later.
    okta-credentials-4.png
  7. Copy the Client secret and save it for later.
  8. Under General Settings, copy your Okta domain and save it for later.
    okta-general-settings-5.png

Step 3: Find your Well-known endpoint

In Okta, the Well-known endpoint is called the Metadata URI. To find the Metadata URI:

  1. From the top menu, go to Security > API.
  2. Find the Authorisation server you want to use, and select the Edit icon.
  3. Under Settings, find the Metadata URI, and copy the URI and save it for later.
    The metadata URI is your well-known endpoint.

Next steps

You now have all the information you need to set SSO up on your account.

Did you find this article helpful?

Can we help?

Thanks for using Dotdigital. If you need more help or support, then contact our support team.