Authenticating with Okta

Summary

This short series of steps enables Okta admins to connect their Okta instances to Bigeye for single sign on. Upon completion, your employees will be able to login to Bigeye via Okta.

Steps

Part 1: In your Okta instance, set up a new application for Bigeye.

  1. As an Okta Administrator, in Okta, navigate to Applications.
804804
  1. Click the Create App Integration button.
16841684
  1. Select OIDC - OpenID Connect and Web Application, then click Next.
10401040
  1. In the New Web App Integration section, enter an App Integration Name, set the Bigeye logo, and set the Grant Type to Implicit (hybrid):
10521052
  1. Set https://bigeye.us.auth0.com/login/callback as the Sign-in redirect URI:
10381038
  1. Select an Assignment and click Save.
16821682
  1. You will now see the General section of the application. Both the Client ID and the Client secret will need to be sent to Bigeye as part of the setup.
12441244
  1. To enable direct login from the Okta dashboard:
    a. In the General Settings section, click Edit.
    b. Scroll down to the Login section.
    c. Change Login initiated by to Either Okta or App.
    d. Set Application Visibility.
    e. Enter https://app.bigeye.com/sso/<Auth0 connection name> in the Initiate login URI, where is provided by Bigeye. Note that if you are configuring a self-hosted installation, you will need to substitute your bigeye URL for app.bigeye.com. This will be something like <mycompany>.bigeye.com.
    f. Click Save.

📘

If you are setting up for self hosted Bigeye, app.bigeye.com will not be correct. Your Bigeye contact will provide the correct domain.

11561156

Part 2: Securely send over your new app’s information to the Bigeye team.

  1. In a new tab open up One Time Secret (https://onetimesecret.com/). This will allow you to securely share your app’s sensitive details with the Bigeye team via an encrpyted link.
  2. In the first text box, paste in your app’s Client ID, Client Secret, and Okta Domain, each separated by a new line.
  3. Below, create a simple pass code for your secret.
  4. Below, select 1 Day as your Lifetime.
  5. Click Create a secret link.
  6. Once the link has been created, share the link along with the pass code to your Bigeye team over Slack or email. The Bigeye team will complete the configuration our end and let you know your integration is ready.