Skip to main content

Privacera Documentation

Set up portal SSO for Privacera Platform with Okta using OAuth

You can integrate Okta SSO with Privacera Portal using Privacera Manager. Privacera Portal supports Okta as a login provider using OpenId or OAuth or SAML. For more information about SAML configuration, see Set up portal SSO for Privacea Platform with Okta using SAML).

Prerequisites

Before you begin, ensure the following prerequisites are met:

  • Setup an Okta Authorization and get the values for the following to use them in the Configuration section below.

  • authorization_endpoint

  • token_endpoint

  • Client ID

  • Client Secret

  • User Info URI

Procedure
  1. SSH to the instance where Privacera is installed.

  2. Run the following commands.

    cd ~/privacera/privacera-manager
    cp config/sample-vars/vars.okta.yml  config/custom-vars/
    vi config/custom-vars/vars.okta.yml
  3. Edit the values for the following. For property details and description, refer to the Configuration Properties below.

    OAUTH_CLIENT_CLIENTSECRET : "<PLEASE_CHANGE>"
    OAUTH_CLIENT_CLIENTID : "<PLEASE_CHANGE>"
    OAUTH_CLIENT_TOKEN_URI : "<PLEASE_CHANGE>"
    OAUTH_CLIENT_AUTH_URI : "<PLEASE_CHANGE>"
    OAUTH_RESOURCE_USER_INFO_URI : "<PLEASE_CHANGE>"
    PORTAL_UI_SSO_ENABLE: "true"
  4. Run the following commands.

    cd ~/privacera/privacera-manager
    ./privacera-manager.sh update

OAuth configuration properties

Property

Description

Example

OAUTH_CLIENT_CLIENTSECRET

Get it from the Prerequisites section above.

OAUTH_CLIENT_CLIENTSECRET: "4hb88P9UZmxxxxxxxxm1WtqsaQRv1FZDZiaOT0Gm"

OAUTH_CLIENT_CLIENTID

Get it from the Prerequisites section above.

0oa63edjkaoNHGYTS357

OAUTH_CLIENT_TOKEN_URI

Get it from the Prerequisites section above.

https://dev-396511.okta.com/oauth2/default/v1/token

OAUTH_CLIENT_AUTH_URI

Get it from the Prerequisites section above.

https://dev-396511.okta.com/oauth2/default/v1/authorize

OAUTH_RESOURCE_USER_INFO_URI

Get it from the Prerequisites section above.

https://dev-396511.okta.com/oauth2/default/v1/userinfo

PORTAL_UI_SSO_ENABLE

Property to enable/disable OKTA

true

Validate OAuth set up

Login to Privacera Portal using Okta SSO Login

  1. Log in to Privacera Portal.

  2. Click SSO Login button.

    The Okta login page is displayed.

  3. Enter the Okta user login credentials. The Privacera Portal page is displayed.

Login to Privacera Portal using Privacera user credentials

  1. Log in to Privacera Portal.

  2. Enter the user credentials (padmin).

  3. Click Login button. The Privacera Portal page is displayed.