Skip to content

Portal SSO with Okta

This topic covers how you can Integratie Okta SSO with Privacera Portal using Privacera Manager. Privacera Portal supports Okta as a login provider using OpenId or OAuth or SAML.

Prerequisites

Before you begin, ensure the following prerequisites are met:

  • Setup an Okta Authorization and get the values for the following to use them in the Configuration section below.
  • authorization_endpoint
  • token_endpoint
  • Client ID
  • Client Secret
  • User Info URI

CLI Configuration

  1. SSH to the instance where Privacera is installed.

  2. Run the following commands.

    cd ~/privacera/privacera-manager
    cp config/sample-vars/vars.okta.yml  config/custom-vars/
    vi config/custom-vars/vars.okta.yml
    

    Edit the values for the following. For property details and description, refer to the Configuration Properties below.

    OAUTH_CLIENT_CLIENTSECRET : "<PLEASE_CHANGE>"
    OAUTH_CLIENT_CLIENTID : "<PLEASE_CHANGE>"
    OAUTH_CLIENT_TOKEN_URI : "<PLEASE_CHANGE>"
    OAUTH_CLIENT_AUTH_URI : "<PLEASE_CHANGE>"
    OAUTH_RESOURCE_USER_INFO_URI : "<PLEASE_CHANGE>"
    PORTAL_UI_SSO_ENABLE: "true"
    
  3. Run the following commands.

    cd ~/privacera/privacera-manager
    ./privacera-manager.sh update
    

Configuration Properties

Property Description Example
OAUTH_CLIENT_CLIENTSECRET Get it from the Prerequisites section above. OAUTH_CLIENT_CLIENTSECRET: "4hb88P9UZmxxxxxxxxm1WtqsaQRv1FZDZiaOT0Gm"        
OAUTH_CLIENT_CLIENTID Get it from the Prerequisites section above. 0oa63edjkaoNHGYTS357
OAUTH_CLIENT_TOKEN_URI Get it from the Prerequisites section above. https://dev-396511.okta.com/oauth2/default/v1/token
OAUTH_CLIENT_AUTH_URI Get it from the Prerequisites section above. https://dev-396511.okta.com/oauth2/default/v1/authorize
OAUTH_RESOURCE_USER_INFO_URI Get it from the Prerequisites section above. https://dev-396511.okta.com/oauth2/default/v1/userinfo
PORTAL_UI_SSO_ENABLE Property to enable/disable OKTA true

Validation

Login to Privacera Portal using Okta SSO Login

  1. Log in to Privacera Portal.

  2. Click SSO Login button.

    The Okta login page is displayed.

  3. Enter the Okta user login credentials. The Privacera Portal page is displayed.

Login to Privacera Portal using Privacera User Credentials

  1. Log in to Privacera Portal.

  2. Enter the user credentials (padmin).

  3. Click Login button. The Privacera Portal page is displayed.