Configuring R‑Cloud SSO with Okta

R‑Cloud allows you to configure single sign-on (SSO) with the Okta Integration Network (OIN) application.

Note  If you encounter any issues or have any questions about configuring R‑Cloud SSO with Okta, contact HYCU Support.

Supported Features

The service provider-initiated flow is supported. This authentication flow is used when the user attempts to sign in to R‑Cloud from the R‑Cloud sign-in webpage.

Note  User federation and role management are not supported. Managing users and user roles is still done in R‑Cloud. For details, see Managing identity and access.

Prerequisites

Before you can configure R‑Cloud SSO with Okta, the following prerequisites must be fulfilled:

  • You must have access to an Okta tenant and be an Okta administrator to that tenant.

  • You must have an active R‑Cloud subscription. For details, see Starting with R‑Cloud.

  • You must have the administrator role assigned at the subscription level.

  • The users must be created in R‑Cloud and their email addresses must match their Okta accounts (user names).

    Make sure that your Okta user base only contains the unique user names. When signing in to R‑Cloud by using Okta, the user name letter case will be transformed to lower case. For example, Okta accounts with user names user.name@example.com and User.Name@example.com will be treated as a single account.

Configuration steps

To enable R‑Cloud SSO with Okta, the configuration steps that are described in this topic must be performed in Okta and in R‑Cloud.

Okta configuration steps

  1. In the Okta Admin Dashboard, navigate to Applications.

  2. Click Browse App Catalog, and then search for and add HYCU R‑Cloud.

  3. Navigate to General Settings, and then enter the HYCU account ID of your R‑Cloud subscription.

    Note  You can find your HYCU account ID in your R‑Cloud subscription information. For details, see Viewing subscription information.

  4. Click Next.

  5. Under Sign-On Options, take note of the Client ID and the Client Secret. You will need to provide this information when you perform the required configuration steps in R‑Cloud.

  6. Assign the HYCU R‑Cloud application to the users or the groups for which you want to enable R‑Cloud SSO with Okta. For details on how to do this, see Okta documentation.

R‑Cloud configuration steps

  1. In the Identity Providers dialog box, click New New.

  2. Enter a name for the identity provider. The name that you specify can contain only lowercase letters and hyphens, must begin and end with a lowercase letter, and cannot be longer than 63 characters.

  3. From the Type drop-down menu, select Okta.

  4. In the Client ID field, enter the client ID that was generated by Okta.

  5. In the Client secret field, enter the client secret that is associated with the client ID and was generated by Okta.

  6. In the Issuer field, enter the URL of the issuer of Okta.

  7. Click Save.

Signing in to R‑Cloud by using Okta

Procedure

  1. Open the R‑Cloud web page.

  2. Click Sign in with Okta to sign in to R‑Cloud.