Okta

Before We Dive In:

  • You should be an Admin on both your Okta account and your Privakey Passwordless SSO.
  • All users signing in with Privakey must be part of your domain.

Lets Do it - Set Up Okta and Privakey 🚀

Configure Okta

Ensure continued admin access

If you make an error during configuration there is a risk of locking yourself out. Don't worry - there is a straight forward way to avoid this.

Create an alternate Admin Account

When we're done setting up Passwordless access to Okta with Privakey all domain-joined accounts will use Privakey to login. So, we are going to create a new Admin with an alternate email address that will use Username and Password to access the service. They will always have access to the Admin console in case something goes wrong during set-up.

  1. Navigate to the Admin console.
  2. Click on Directory and then People on the left-hand navigation.
  3. Click on the Add Person button.
  4. Select User Type: Octa Admin.
  5. Enter First Name and Last Name
  6. For Username use a personal email address (or a non-domain email account) of the admin user who will have back-up access.
  7. Complete setting up the user.

That's it - this user account will be your back up account.

All or Some?

If you want to migrate everyone to Privakey, it's real easy. Simply jump ahead to [Configure Privakey as an SSO]

Configure Privakey as an SSO

Now that we have a back-up Admin user, let's set up Privakey.

1. Navigate to Admin > Security > Identity Providers
  1. Log into Okta as an administrator
  2. Navigate to Admin
  3. In the left-hand navigation, go to Security, Identity Providers
2. Add an Identity Provider
  1. Click on the Add Identity Provider button.
  2. Click on the SAML (SAML 2.0 IdP) tile then the Next button (you may need to scroll down to see it). The following page should diplay:

Add Service Provider

...To Be Continued

Document Version: 0.0 | January 17, 2024.