Portal SSO with Okta#
This topic covers how you can Integratie Okta SSO with Privacera Portal using Privacera Manager. Privacera Portal supports Okta as a login provider using OpenId or OAuth or SAML.
Prerequisites#
Before you begin, ensure the following prerequisites are met:
- Setup an Okta Authorization and get the values for the following to use them in the Configuration section below.
- authorization_endpoint
- token_endpoint
- Client ID
- Client Secret
- User Info URI
CLI Configuration#
-
SSH to the instance where Privacera is installed.
-
Run the following commands.
cd ~/privacera/privacera-manager cp config/sample-vars/vars.okta.yml config/custom-vars/ vi config/custom-vars/vars.okta.yml
Edit the values for the following. For property details and description, refer to the Configuration Properties below.
OAUTH_CLIENT_CLIENTSECRET : "<PLEASE_CHANGE>" OAUTH_CLIENT_CLIENTID : "<PLEASE_CHANGE>" OAUTH_CLIENT_TOKEN_URI : "<PLEASE_CHANGE>" OAUTH_CLIENT_AUTH_URI : "<PLEASE_CHANGE>" OAUTH_RESOURCE_USER_INFO_URI : "<PLEASE_CHANGE>" PORTAL_UI_SSO_ENABLE: "true"
-
Run the following commands.
cd ~/privacera/privacera-manager ./privacera-manager.sh update
Configuration Properties#
Property | Description | Example |
---|---|---|
OAUTH_CLIENT_CLIENTSECRET | Get it from the Prerequisites section above. | OAUTH_CLIENT_CLIENTSECRET: "4hb88P9UZmxxxxxxxxm1WtqsaQRv1FZDZiaOT0Gm" |
OAUTH_CLIENT_CLIENTID | Get it from the Prerequisites section above. | 0oa63edjkaoNHGYTS357 |
OAUTH_CLIENT_TOKEN_URI | Get it from the Prerequisites section above. | https://dev-396511.okta.com/oauth2/default/v1/token |
OAUTH_CLIENT_AUTH_URI | Get it from the Prerequisites section above. | https://dev-396511.okta.com/oauth2/default/v1/authorize |
OAUTH_RESOURCE_USER_INFO_URI | Get it from the Prerequisites section above. | https://dev-396511.okta.com/oauth2/default/v1/userinfo |
PORTAL_UI_SSO_ENABLE | Property to enable/disable OKTA | true |
Validation#
Login to Privacera Portal using Okta SSO Login#
-
Log in to Privacera Portal.
-
Click SSO Login button.
The Okta login page is displayed.
-
Enter the Okta user login credentials. The Privacera Portal page is displayed.
Login to Privacera Portal using Privacera User Credentials#
-
Log in to Privacera Portal.
-
Enter the user credentials (padmin).
-
Click Login button. The Privacera Portal page is displayed.