Okta Federated Authentication
Updated Aug 21, 2023Create an OpenID Connect application integration
To set up federated authentication for Arctic Wolf web portals, create an OpenID Connect (OIDC) application integration in Okta.
- Launch the Wizard.
- Configure the application integration.
- Set the issuer URL.
- Gather Okta integration information.
Step 1: Launch the Wizard
- In the Admin Console, go to Applications > Applications.
- Click Create App Integration.
- To create an OIDC app integration, for the Sign-in method option, select OIDC - OpenID Connect.
- Under Application Type, select Web Application.
- Click Next.
Step 2: Configure the application integration
- In the App Integration Name field, enter a descriptive name, for example,
Arctic Wolf Portal
. - In the Grant Type section, select the following checkboxes:
- Implicit (hybrid)
- Allow ID Token with implicit grant type
- Allow Access Token with implicit grant type
- In the Sign-in redirect URIs field, enter
https://auth.arcticwolf.com/login/callback
. - In the Sign-out redirect URIs section, click X to remove any field entries.
- In the Trusted Origins section, click X to remove any field entries.
- In the Assignments section:
- For the Controlled Access setting, select an option.
- Under Enable immediate access, select Enabled immediate access with Federation Broker Mode.
- Click Save.
Step 3: Set the issuer URL
- On the application settings page, click the Sign On tab.
- In the OpenID Connect ID Token section, from the Issuer list, select Okta URL.
- Click Save.
- Record the Okta URL value for later.
Step 4: Gather Okta integration information
- Gather the following information so that you can register your Okta account with Arctic Wolf:
-
Client ID — On the application settings page, this information is on the General tab.
-
Client secret — On the application settings page, this information is on the General tab.
-
Issuer URL — To form the Issuer URL, append
/.well-known/openid-configuration
to the Okta URL in brackets.For example, if the Okta URL is
https://demo1234.okta.com
, then the Issuer URL ishttps://demo1234.okta.com/.well-known/openid-configuration
.
-