Skip to content

Portal SSO with Okta#

This topic covers how you can Integratie Okta SSO with Privacera Portal using Privacera Manager. Privacera Portal supports Okta as a login provider using OpenId or OAuth or SAML.

Prerequisites#

Before you begin, ensure the following prerequisites are met:

  • Setup an Okta Authorization and get the values for the following to use them in the Configuration section below.
  • authorization_endpoint
  • token_endpoint
  • Client ID
  • Client Secret
  • User Info URI

CLI Configuration#

  1. SSH to the instance where Privacera is installed.

  2. Run the following commands.

    cd ~/privacera/privacera-manager
cp config/sample-vars/vars.okta.yml  config/custom-vars/
vi config/custom-vars/vars.okta.yml

    Edit the values for the following. For property details and description, refer to the Configuration Properties below.

    OAUTH_CLIENT_CLIENTSECRET : "<PLEASE_CHANGE>"
OAUTH_CLIENT_CLIENTID : "<PLEASE_CHANGE>"
OAUTH_CLIENT_TOKEN_URI : "<PLEASE_CHANGE>"
OAUTH_CLIENT_AUTH_URI : "<PLEASE_CHANGE>"
OAUTH_RESOURCE_USER_INFO_URI : "<PLEASE_CHANGE>"
PORTAL_UI_SSO_ENABLE: "true"

  3. Run the following commands.

    cd ~/privacera/privacera-manager
./privacera-manager.sh update

Configuration Properties#

Property Description Example
OAUTH_CLIENT_CLIENTSECRET Get it from the Prerequisites section above. OAUTH_CLIENT_CLIENTSECRET: "4hb88P9UZmxxxxxxxxm1WtqsaQRv1FZDZiaOT0Gm"        
OAUTH_CLIENT_CLIENTID Get it from the Prerequisites section above. 0oa63edjkaoNHGYTS357
OAUTH_CLIENT_TOKEN_URI Get it from the Prerequisites section above. https://dev-396511.okta.com/oauth2/default/v1/token
OAUTH_CLIENT_AUTH_URI Get it from the Prerequisites section above. https://dev-396511.okta.com/oauth2/default/v1/authorize
OAUTH_RESOURCE_USER_INFO_URI Get it from the Prerequisites section above. https://dev-396511.okta.com/oauth2/default/v1/userinfo
PORTAL_UI_SSO_ENABLE Property to enable/disable OKTA true

Validation#

Login to Privacera Portal using Okta SSO Login#

  1. Log in to Privacera Portal.

  2. Click SSO Login button.

    The Okta login page is displayed.

  3. Enter the Okta user login credentials. The Privacera Portal page is displayed.

Login to Privacera Portal using Privacera User Credentials#

  1. Log in to Privacera Portal.

  2. Enter the user credentials (padmin).

  3. Click Login button. The Privacera Portal page is displayed.