Using Thordata to set up Okta SSO

Requirements:

  • An Okta organization account with administrator privileges.

  • A Thordata account with administrator privileges.

Steps:

  1. Steps:In your Okta Admin Dashboard, go to Applications > Applications. (https://[your_domain]-admin.okta.com/admin/apps/active)

  2. Click Create App Integration.

  1. Select OIDC - OpenID Connect as the Sign-in method.

  2. Choose Web Application as the Application type, then click Next.

  1. You will be redirected to a new Web App Integration page. Here, you can name your app integration (we recommend using "Thordata Control Panel").

  2. Under Grant type, select Implicit and Authorization Code [Optional].

  1. Go to the Thordata Control Panel.

  2. Open the OKTA Configuration dialog.

  1. Copy the Sign-in redirect URI.

  1. Paste it into the corresponding field in the new app settings in Okta.

  1. Repeat the same process for the Sign-out URI.

  2. Under Assignments, select the desired access level.

  1. Click Save.

  2. You should now be on the settings page for the new app integration.

    Copy your Client ID, Client Secret, and Okta Domain to the OKTA settings dialog in the Thordata Control Panel.

Okta Domain:

  1. You should go to Security-API-Tokens to create your token

Then copy it into the OKTA settings dialog in the Thourdata control panel.

  1. Click "Activate". If you select "Allow everyone access", skip step 17.

  2. Click Activate. (If you selected "Allow everyone access," skip step 16.)

  3. Go to the Assignments tab and assign the users permitted to use this integration.

  1. Go to the Thordata settings page and ensure all required users are displayed. Note: We are currently working on providing user support – you should manage this manually for now.

The following steps are optional. They enable your users to initiate authentication from their dashboard or the Okta Chrome extension.

  1. Scroll down to General Settings and click Edit.

  2. Configure the following settings: * Login initiated by: Okta or App * App visibility: Display application icon to users * Login flow: Redirect to app to initiate login (OIDC compliant)

Copy the Initiate login URI from the Control Panel.

  1. Save the changes. The integration is now ready.

Important Notes:

  • The Okta Domain should be the one that appears in your app integration settings (e.g., yourcompany.okta.com), not the one you see as an administrator (e.g., yourcompany-admin.okta.com).

  • Ensure the credentials provided to Thordata are correct, as we cannot verify them personally.

  • The Sign-in redirect URI is mandatory for the SSO functionality to work.

  • The Initiate login URI is required if you want to use the feature from the Okta Chrome extension or the Okta dashboard.

PreviousSSONextChrome Extension

Last updated

Was this helpful?