Calyx RIM Viewing 5.5 Administrator Guide

Configure Okta Single Sign-on

Users in an organization can sign on to Calyx RIM Viewing automatically with the user account information stored in the Okta active directory. This eliminates the need to reauthenticate Calyx RIM Viewing when you are using Okta as ID provider.

The procedure below must be performed after enabling the IDP or IDP Authentication only mode. To enable multiple single sign-on Identity Providers (IdP), the value of the attribute perceptive_cloud. must be set to true in the config.xml file.
Note: To access the Okta Single Sign On (SSO) feature for Calyx RIM Viewing, verify that you added the https://<host_name>/I4V/idp/<Provider Name> url into the Login redirect URLs Okta active directory settings.
To change the Okta single sign-on parameters, do the following:
  1. In the Administrator console, click Server Settings.
  2. In the Server Settings window, select the Configuration Settings tab.
  3. For Authentication Mode under Authentication Configuration Details, select the option IDP or IDP Authentication only and populate the fields:
    OptionDescription
    Provider Name* Select the Identity Provider name.
    Provider Type Select the SSO Identity Provider type.
    Base URL Indicate the updated parameter you got when registering your application in Okta.
    Client ID Indicate the updated parameter you got when registering your application in Okta.
    Client Secret Indicate the updated parameter you got when registering your application in Okta.
    Authorization Server Indicate the updated parameter you got when registering your application in Okta.
    Auth Api Token Indicate the updated parameter you got when registering your application in Okta.
    Post Logout Redirect Url Indicate the updated parameter you got when registering your application in Okta.
  4. Click Update and click Yes in the confirmation message.
    Note: If you select Yes , the Calyx RIM Viewing application window will close immediately.
  5. Restart the application server.
    Note: If only one single sign-on IdP is configured, you will be redirected to the Identity Provider authentication page where you are prompted to enter your credentials. The I am login page appears when two or more single sign-on Identity Providers are configured. After that you will be able to see the Login page with the I am drop-down menu.
Note: To verify the settings, do the following:
  1. Click Login to access the Calyx RIM Viewing application. The third-party Okta login window will appear.
  2. Specify your login and password you got when registering your application in Okta.
Note: To disable the Multiple Single Sign on Identity Providers, set the perceptive_cloud to false in the config.xml file. See Enable Multiple Single Sign-on Identity Providers (IdP).