Enabling OIDC in Asset Bank
At this time, OIDC is not enabled by default. Please contact our Customer Support Team to enable this feature.
Once enabled, you will find the OIDC settings in the Config > System > SSO area of Asset Bank, along with the Sign-in Redirect URI and the Sign-out Redirect URI. Make a note of both of these for later.
Adding Asset Bank as an app in Okta
Sign in to your organisation's Okta Admin Console and click 'Applications' in the left-hand menu.
From the top toolbar, click 'Create App Integration'.
Select OIDC as the sign-in method and Web Application as the application type.
Give the app a suitable name, add the Sign-in Redirect URI and Sign-out Redirect URI you obtained in the first section and choose your level of access control. The Base URI can generally be left blank.
Once the app is created, copy the Client ID and Client Secret.
Configuring Asset Bank
Go back to the Config > System > SSO area of Asset Bank and click ‘Edit these settings’ at the bottom of the page.
Set the Authority URL as https://{{company_name}}.okta.com where {{company_name}} is your organisation name and add the Client ID and Client Secret.
Leave the Logout redirect URL as the default unless you wish to direct users away from Asset Bank when they log out.
You can add the IDs of any Asset Bank groups that users should be automatically added to when they log in via OIDC.
Testing and Enabling
Before you enable OIDC for your users, you may wish to test it by visiting https://<your-base-url>/action/ssoAuthenticate?mode=manual, replacing <your-base-url> with your app's base URL. For example:
https://example.assetbank.app/assetbank-example/action/ssoAuthenticate?mode=manual
Once you've tested the login, you can enable it for your users, which will add a 'Login with SSO' option to your login page.
Comments
0 comments
Please sign in to leave a comment.