In this article, you will find information about the Okta Login functionality and how to configure it to be able to log in to the HEIMDAL Dashboard.
1. Creating the OKTA Login application
2. Configuring the OKTA Login in the HEIMDAL Dashboard
Creating the OKTA Login application
1. Log in to your Okta account and visit the Admin section. The Okta URL should look like this: https://organization-name-admin.okta.com. To access the Okta account, you need to make sure you use the Okta Verify mobile app for the 2FA.
2. On the left menu, go to the Applications -> Applications and click Create App Integration.
3. Choose OIDC - OpenID Connect, then Web Application.
4. On the New Web App Integration page, you need to fill out:
- App integration name - give your Okta application a name;
- Sign-in redirect URIs - fill out the HEIMDAL Dashboard URL, followed by /authentication/oktaCallback. For example, if you use both the PROD and RC HEIMDAL Dashboards, you should add the following URIs: https://dashboard.heimdalsecurity.com/authentication/oktaCallback or https://rc-dashboard.heimdalsecurity.com/authentication/oktaCallback;
- Assignments - select the app access level. Only users with access will be able to authenticate;
- Other settings should stay the same.
5. After creating the application, you will be presented with the Client ID and Client Secret, which you will need to fill in the HEIMDAL Dashboard.
Configuring the OKTA Login application in the HEIMDAL Dashboard
1. Log in to the HEIMDAL Dashboard, go to the Guide -> Customer Settings tab -> Login Setup sub-tab and enable the Okta Integration.
2. Fill in the Client ID, Client Secret, the Authorization Endpoint, and the Token Endpoint. The Authorization and Token endpoints should be the URIs of the specific endpoints of your Okta organization. These can be found at: https://your-Okta-organization-name.okta.com/.well-known/openid-configuration.
3. Additionally, you will need to fill out the domains used for the email addresses inside your Okta organization. These should be unique to your organization.
4. After filling in all fields, press the Save button.
Now, you can log in to the HEIMDAL Dashboard by entering your email address and then clicking the Okta Login button. You will be redirected to your Okta organization to log in based on the settings of your account's organization, then you will be redirected back to the HEIMDAL Dashboard.