Configuring Appdome Authentication via Okta
This guide details the steps and the necessary data required for properly configuring Okta. Okta is an identity management service that allows IT to manage any employee’s access to any application or device. Okta runs in the cloud, on a secure, reliable, extensively audited platform, which integrates deeply with on-premises applications, directories, and identity management systems.
This guide is divided into the following parts:
- Configuring the Settings on Okta Admin Console
- Defining the Person to Use Okta
Note:
This guide is meant for administrators in corporations, but its Appdome parts require admin-level privileges in Appdome and therefore you need to contact Appdome Support.
Configuring the Settings on Okta Admin Console
To add the configuration for Okta:
- Go to the Okta admin console.
The console should look as shown in the image below.
- On the left side menu, go to Applications > Applications.
- Click Create App Integration.
- Use the dialog box that opens now to make the choices displayed in the image below:
-
Sign-in method: OIDC – Open ID Connect
-
Application type: Web application
-
- Use the New Web App Integration page that appears now to enter data as follows:
- Enter a unique name in the App Integration Name
- Select the Client Credentials check box
- Select the Refresh Token check box
- Use the Sign-In Redirect URIs field to enter the environment on which you are testing, with the suffix /api/login/okta/{Company name in small case}
For example: https://fusion.appdome.com/api/login/okta/appdome-platform
Note: If you do not have yet have a lower case company name, you can skip this field and fill it in at a later stage.
- Use the Sign Out redirect URIs to enter the environment URL, without any suffixes.
- Use the lower section to select the check box Skip group assignment for now.
- Click Save.
Now you are taken to the Application’s details page, where you can see more relevant data and keys to be used soon.
- Keep the Client authentication setting that was defined when the user created the application.
- Ensure that PKCE is mandatory:
- Click the Edit button on the right.
- Select the check box Require PKCE as additional verification.
- Click Save.
- Ensure that all other configuration settings (General Settings) are defined as shown below.
Defining the Person to Use Okta
To define the person to use Okta:
- From the menu on the left side, go to Directory > People and click Add Person.
- Use a domain that you remember and can use, as this domain will be used for logging in.
- Ensure that the check box I will set password is selected, and enter a password of your choice.
- Decide whether the user you defined can keep using the password entered here or must change it, in which case verify that the check box User must change password on first login is selected.
- When done, click Save and Add Another to add one more user. Alternatively, if you add only one user or if this user is the last one you want to add, click Save.
- After all requested users are saved open the page associated with the requested user and click Assign Applications.
- Select the application you created above and click Assign and then Done.
Related Articles:
- Appdome Mobile Security Suite
- Secure Mobile Apps with the Appdome App Defend Package
- Secure Mobile Apps with the Appdome App Protect Package
How Do I Learn More
The description above is designed to help you properly configuring Okta. If you have any questions, please send them our way at support.appdome.com or via the chat window on the Appdome platform.
Thank you!
Thanks for visiting Appdome! Our mission is to secure every app on the planet by making mobile app security easy. We hope we’re living up to the mission with your project.