Privacera Platform master publication

Portal SSO with Okta
:

This topic covers how you can Integratie Okta SSO with Privacera Portal using Privacera Manager. Privacera Portal supports Okta as a login provider using OpenId or OAuth or SAML.

Prerequisites

Before you begin, ensure the following prerequisites are met:

  • Setup an Okta Authorization and get the values for the following to use them in the Configuration section below.

  • authorization_endpoint

  • token_endpoint

  • Client ID

  • Client Secret

  • User Info URI

CLI configuration
  1. SSH to the instance where Privacera is installed.

  2. Run the following commands.

    cd ~/privacera/privacera-manager
    cp config/sample-vars/vars.okta.yml  config/custom-vars/
    vi config/custom-vars/vars.okta.yml

    Edit the values for the following. For property details and description, refer to the Configuration Properties below.

    OAUTH_CLIENT_CLIENTSECRET : "<PLEASE_CHANGE>"
    OAUTH_CLIENT_CLIENTID : "<PLEASE_CHANGE>"
    OAUTH_CLIENT_TOKEN_URI : "<PLEASE_CHANGE>"
    OAUTH_CLIENT_AUTH_URI : "<PLEASE_CHANGE>"
    OAUTH_RESOURCE_USER_INFO_URI : "<PLEASE_CHANGE>"
    PORTAL_UI_SSO_ENABLE: "true"
  3. Run the following commands.

    cd ~/privacera/privacera-manager
    ./privacera-manager.sh update
Configuration properties

Property

Description

Example

OAUTH_CLIENT_CLIENTSECRET

Get it from the Prerequisites section above.

OAUTH_CLIENT_CLIENTSECRET: "4hb88P9UZmxxxxxxxxm1WtqsaQRv1FZDZiaOT0Gm"

OAUTH_CLIENT_CLIENTID

Get it from the Prerequisites section above.

0oa63edjkaoNHGYTS357

OAUTH_CLIENT_TOKEN_URI

Get it from the Prerequisites section above.

https://dev-396511.okta.com/oauth2/default/v1/token

OAUTH_CLIENT_AUTH_URI

Get it from the Prerequisites section above.

https://dev-396511.okta.com/oauth2/default/v1/authorize

OAUTH_RESOURCE_USER_INFO_URI

Get it from the Prerequisites section above.

https://dev-396511.okta.com/oauth2/default/v1/userinfo

PORTAL_UI_SSO_ENABLE

Property to enable/disable OKTA

true

Validation
Login to Privacera Portal using Okta SSO Login
  1. Log in to Privacera Portal.

  2. Click SSO Login button.

    image55.jpg

    The Okta login page is displayed.

    image56.jpg
  3. Enter the Okta user login credentials. The Privacera Portal page is displayed.

Login to Privacera Portal using Privacera user credentials
  1. Log in to Privacera Portal.

  2. Enter the user credentials (padmin).

  3. Click Login button. The Privacera Portal page is displayed.