Enable Okta IdP for Liquent InSight
-
Locate the
insightConfig.bat file in the
<installation drive>\InSightManager\server\all\conf\insight installation directory and double-click the file.
The Configuration Settings window appears.
-
On the
Configuration Settings window, select
File > Load File.
The current configuration settings are populated to the Configuration Wizard.
- In the left pane, select Identity Provider Settings.
-
Populate the following fields:
Field Name Input Value Identity Provider Type Okta Application Logout URI https://{Okta Application Issuer}/oauth2/default/v1/logout\?id_token_hint=ID_TOKEN_PLACEHOLDER\ &post_logout_redirect_uri=http://{insight server}:{port}/insight Access Token URI https://{Okta Application Issuer}/oauth2/default/v1/token Client ID {Okta Application Client ID} Client Secret {Okta Application Client Secret} Key Discovery URI https://{Okta Application Issuer}/oauth2/default/v1/keys User Authorization URI https://{Okta Application Issuer}/oauth2/default/v1/authorize Issuer Base URI https ://{Okta Application Issuer} /oauth2/default Base API URL https://{Okta Application Issuer}/api/v1 Authorization API Token {Okta Application Token} Default Admin {Registered Okta IDP user} For example: “[email protected]”
Use Multiple IDPs <checked if Insight is going to be used with multiple IDP's only, like Azure+Okta> -
Select
File > Generate File.
- The insight.var is successfully updated in the ..conf\insight directory with the correct settings.
- The oracle-ds.xml is successfully updated in the ..server\all\deploy directory with the correct settings.
- The login-config.xml is updated.
- Select File > Exit.
- Restart the Calyx RIM service.
- Navigate to Control Panel > Internet Options and select the Trusted Sites on the Security tab.
- Populate the Add this website to the zone field with: https://{OKTA Application Issuer}.
- Select Add.
- Select Close.
- Select OK.