SSO - OpenID Connect (Okta Example)

​

Prerequisites

• Sign-in redirect URI (will be provided by your point of contact)
• Sign-out redirect URI (will be provided by your point of contact)

​

Setup Instructions

1. Open the left-nav bar and navigate to “Applications” (inside “Applications” section)
2. Click “Create App Integration”
   1. For Sign-in method, choose “OIDC - OpenID Connect”
   2. For Application type, choose “Web Application”
3. Configure General Settings
   1. You can name the app as you’d like, we suggest “Reforge Insights”
   2. You can download a logo to provide here: [link to logo]
   3. Other settings can be left empty or default values
4. Configure Sign-in redirect URIs
   1. Enter the sign-in redirect URI provided by your Reforge Insights team
   2. Do not check the box for _Allow wildcard _ in sign-in URI redirect.*
5. Configure Sign-out redirect URIs
   1. Enter the sign-out redirect URI provided by your Reforge Insights team
6. Assignments
   1. This can be configured to your preferences based on who should have access to Reforge Insights.
7. Finally, click “Save” at the bottom of the page.
8. On the resulting page, collect the following details:
   1. Client ID
   2. Client Secret
   3. Your Okta Domain is not on this page, but would look something like https://company.okta.com . It can be found by clicking your profile in the top right, and copying the value from the information displayed.
9. Share details with your point of contact at Reforge Insights
   1. We suggest using secure methods, like temporary credentials through 1password, or other secure document sharing means in place with your organization.
   2. The final set of details that need shared:
      1. Client ID
      2. Client Secret
      3. Okta domain
      4. Email domain(s) users in your organization have that will access Reforge Insights e.g. @monterey.ai or @company.com