Single Sign-On Authentication
Table of Contents |
---|
Purpose
MetaField supports single sign-on authentication through the supported identity providers below. All SSO integrations will need to be configured and enabled by working with an Agile Frameworks admin.
OKTA
Setup (Agile Frameworks Internal)
In order to configure the OKTA authentication contact your MetaField Solution Consultant and provide the following pieces of data from OKTA. The configurations are made within the MetaField Super Admin.
- Client ID
- Client Secret
- Okta Domain
- The redirect URI will be the company's MetaField domain with "/Account/OktaCallback" appended.
Login
MetaField supports single sign-on directly through an OKTA dashboard or by making OAuth API call to OKTA from the MetaField login page.
Once the configurations are set and the connection is enabled, users that will be using SSO will need to be configured in MetaField by toggling the "Enable SSO Authentication" flag on the user record. MetaField will use the user's email address to authenticate through the OKTA IDP. When the user is enabled they will no longer need a password and the field is hidden.
NOTE: Once the OKTA integration is configured, all new users added to the customer (manual or through adapter) will automatically be enabled for SSO.