1 Configuring Identity Federation in OCI IAM Identity Domain when using Okta as the Identity Provider

OPERA Cloud Identity Management provides the capability of identity federation by determining which customers can integrate their identity provider with OPERA Cloud to implement single sign on (SSO) with OPERA Cloud. Leveraging OPERA Cloud Identity Management’s identity federation feature, customers can use their corporate credentials to log on to OPERA Cloud, which eliminates the necessity to separately manage users and their access to OPERA Cloud.

This document provides the steps to set up Okta as an IdP, with OCI IAM Identity Domain acting as SP. By setting up federation between Okta and OCI IAM Identity Domain, you enable users' access to OPERA Cloud Services using user credentials that Okta authenticates.

1. First, gather the information needed from OCI IAM.
2. Configure Okta as an IdP for OCI IAM.
3. Configure OCI IAM so Okta acts as IdP.
4. Create IdP policies in OCI IAM.
5. Test that federated authentication works between OCI IAM and Okta.

Note:

Follow this document only if your identity provider is Okta.

• 1. Download the SAML Metadata in OCI IAM Identity Domain
  
• 2. Create an Application in Okta for OCI IAM Identity Domain
  
• 3. Configure Okta as an Identity Provider in OCI IAM Identity Domain
  
• 4. Configure Okta
  
• 5. Add Okta Identity Provider to IdP Policy in OCI Console
  
• 6. Test Single Sign On