Configure Okta SSO in OneLogin

This page helps you configure Okta as the identity provider (IdP) for OneLogin.

1. Sign in to OneLogin.
2. Go to Authentication > Trusted IdPs and click New Trust.
3. Enter a name for the new TIdP.
4. Configure these settings:
   • Enable/ Disable: To activate your Trusted IdP (TIdP), select the Enable Trusted IDP checkbox.
   • Login Options: Leave this field empty.
5. Click Save.
6. Under Configurations, configure the following:
   • Issuer: Enter the unique issuer from Okta org.
   • Email Domains: Enter one or more domains.
   • Sign users into OneLogin: Enable this checkbox.
7. In the Protocol section, select OIDC. Configure the following fields:
   • Authentication Endpoint: Enter the OIDC URL.
   • Token Endpoint: Enter the OIDC URL.
   • Token Endpoint Auth. Method: Select POST.
   • User Information Endpoint: Enter the OIDC URL.
     Note:

     The values for previous configuration fields can be found under the OpenID Provider Metadata > Sign On tab.

   • Scopes: Specify the required scopes.
   • Enter the Client ID and Client Secret. The values can be found under the OpenID Connect > Sign On tab.

Next step

Configure Just-In-Time provisioning in OneLogin