Comment on page
Example - Okta SSO
Once your Okta org is set up, create an app integration on Okta to get a Client ID and Client Secret.
- 1.In the Admin Console, go to Applications → Applications.
- 2.Click Create App Integration.
- 3.Select OIDC - OpenID Connect as the Sign-in method.
- 4.Select Web as the application type and click Next.
- 5.On the App Integration page:
- Give a name to your application.
- Select the Interaction Code and Refresh Token checkbox.
- Now go to Devtron's Global Configurations → SSO Login Services → OIDC.
- Copy the redirect URI given in the helper text (might look like: https://xxx.xxx.xxx/xxx/callback).
- Return to the Okta screen, and remove the prefilled value in Sign-in redirect URIs.
- Paste the copied URI in Sign-in redirect URIs.
- Click Save.
- 6.On the General tab:
- Note the Client ID value.
- Click the Edit option.
- In Client Authentication, choose Client Secret.
- Click Save.
- Click Generate new secret.
- Note the Client Secret value.
- 1.Go to the Global Configurations → SSO Login Services → OIDC.
- 2.In the URL field, enter the Devtron application URL (a valid https link) where it is hosted.
- 3.Under
Configuration
tab, locate the config object, and provide theclientID
andclientSecret
of the app integration you created on Okta. - 4.Add a key
insecureSkipEmailVerified: true
. Note that this key is only required for Okta SSO. For other types of OIDC SSO, refer OIDC supported configurations. - 5.Provide
issuer
value ashttps://${yourOktaDomain}
. Replace${yourOktaDomain}
with your domain on Okta as shown in the video. - 6.For providing
redirectURI
orcallbackURI
registered with the SSO provider, you can either selectConfiguration
orSample Script
. Note that the redirect URI is already given in the helper text (as seen in the previous section). - 7.Click Save to create and activate Okta SSO login.
Now your users will be able to log in to Devtron using the Okta authentication method. Note that existing signed-in users will be logged out and they have to log in again using their OIDC account.

Last modified 1mo ago