Okta single-sign-on for Ortto
Overview
App authentication settings in Ortto allow you to control how users sign in to their accounts. Okta Single-Sign-On enforced forces all users to login with their Okta account. This also requires additional setup in OKTA.
NOTE: Okta Single-Sign-On is only available to Enterprise customers.
There are two main components to configuring Okta single-sign-on for Ortto:
Add and configure the Ortto app in Okta
To add and configure the Ortto app in Okta, follow these steps:
- Sign in to Okta with your administrator account and go to your Okta Admin dashboard.
- Navigate to the Applications page and click Browse app catalog.
- Search for Ortto and select the appropriate option from the drop-down list.
- On the Ortto page, click Add and follow the prompts to configure the app in Okta.
- After configuring the Ortto app, note down the following details:
- Client ID.
- Client secret.
- Okta domain (found in the Sign On tab of the Ortto app or in the user menu).
- Ensure you have a user account set up in Okta under Directory > People that matches the user account configured in Ortto's User management page.
- On the user's profile in Okta, go to the Applications tab and click Assign applications to assign the Ortto app to this Okta user account.
These steps will successfully integrate and configure the Ortto app within your Okta environment.
Configure the Okta connection
To set up Okta Single Sign-On (SSO) for Ortto, follow these steps:
- After adding and configuring the Ortto app in Okta, go to Ortto's Settings > Privacy, Security & GDPR > App authentication.
- Choose Okta Single-Sign-On enforced (requires additional setup in Okta).
- Click Save and provide Okta details in the dialog that appears, including Okta domain, Client ID, and Client secret.
- Click Submit.
- Sign out and then sign in to Ortto using the Okta button on the sign-in page.
NOTE:
- To allow additional Ortto users to sign in, ensure they have corresponding user accounts with matching email addresses configured in your Okta domain.
- Assign the Ortto app to these users in Okta.
- Permissions assigned to a user in Ortto are separate from those in Okta. Ortto user permissions dictate access within Ortto.
- If you add new user accounts in Ortto after configuring them in Okta, these users will receive an email invitation to sign up or sign in to Ortto via Okta.