Skip to main content

Okta

Written by Chris Lloyd
Updated over 2 weeks ago

This guide walks you through setting up Okta single sign-on (SSO) for your Four/Four instance.

Overview

The Okta integration enables:

  • Single sign-on (SSO) for your users via Okta

  • Seamless authentication using your existing Okta identity provider

  • Secure OAuth 2.0 / OpenID Connect (OIDC) authentication flow

Supported features

  • SP-initiated SSO (Single Sign-On)

For more information on the listed features, visit the Okta Glossary.

Prerequisites

  • An Okta account with administrator access

  • A Four/Four admin user

  • Permissions to create OAuth applications in Okta

Installation

Configuration in Okta

Sign in to your Okta Admin Console

  • Navigate to your Okta organization (e.g., `yourcompany.okta.com`)

  • Sign in with your administrator credentials

Browse the Okta Integration Network

  • Go to Applications > Applications in the left sidebar

  • Click Browse App Catalog

  • Search for "Four/Four"

  • Click on the Four/Four application from the search results

Add the Integration

  • Click Add Integration

  • Configure the application label (optional)

  • Click Done

Retrieve Your Credentials

  • After adding the integration, go to the Sign On tab

  • Scroll down to OpenID Connect

  • Copy the Client ID

  • Copy the Client Secret

  • Make note of your Okta domain

Configuration in Four/Four

Navigate to Connections

  • Log in to Four/Four with an administrator account

  • Go to Settings > Connections

  • Find the Okta connection, and click Connect

Enter Your Okta Credentials

  • Okta Domain: Enter your domain without 'https://' (eg 'yourcompany.okta.com')

  • Client ID: Paste the Client ID from Okta (starts with '0oa')

  • Client Secret: Paste the Client Secret from Okta

  • Click Save Configuration

Four/Four will automatically validate your credentials. If successful, you'll see a confirmation message. If validation fails, double-check your credentials and try again

Testing the Integration

  • Sign Out of Four/Four

  • Go to your Four/Four login page

  • Enter your username

  • You should see a Sign in with Okta option

  • Click Sign in with Okta

  • You'll be redirected to your Okta login page

  • Sign in with your Okta credentials

  • You should be redirected back to Four/Four and automatically signed in

Frequently Asked Questions

Can I use a custom domain with Okta?

Yes, custom Okta domains are supported

Can users still log in with passwords after enabling Okta?

No, enabling Okta SSO disables password-based authentication. However, users can still log in via a 'magic link' sent to them by email.

What happens if I change my Okta credentials?

If you change your Client ID or Client Secret in Okta, you must update them in Four/Four's settings to maintain the integration.

Can I use Okta preview domains?

Yes, both 'okta.com' and 'oktapreview.com' domains are supported for development and testing.

Did this answer your question?