IAM Lab

Product Chosen: Okta Lab Task: Configure Single Sign-On (SSO) for a sample application.

Set up Okta to enable SSO for a sample application, allowing a user to log in seamlessly using their Okta credentials.

Sign up for a free Okta developer account at developer.okta.com.
Log into the Okta Admin Console with your credentials.
Add a new application:
- Go to Applications > Applications and click Create App Integration.
- Select SAML 2.0 (or OpenID Connect if preferred) and click Next.
- App Name: "Sample App"
- Click Next and configure basic SAML settings (e.g., Single Sign-On URL and Audience URI can use dummy values like http://localhost for testing).
- Click Finish.
Assign the application:
- Go to Applications > Sample App > Assignments.
- Click Assign and select a user or group (e.g., yourself), then save.
Test the SSO:
- Log out, then access the Okta dashboard as the assigned user.
- Click the "Sample App" tile to verify SSO redirection.

When you click the app tile, you should be redirected to the application (or a test page) without needing to re-enter credentials.

Enable Multi-Factor Authentication (?) in Okta using Okta Verify for the sample application, requiring a push notification for login.

Log into the Okta Admin Console.
Configure MFA:
- Go to Security > Authentication > Sign On.
- Under Sign On Policy, click Add Rule.
- Rule Name: "MFA for Sample App".
- Conditions: Set Applications to "Sample App".
- Actions: Select "Prompt for factor" and choose "Every time".
- Click Create Rule.
Enroll a user in MFA:
- Go to Directory > People, select a test user.
- Under More Actions, choose "Enroll in MFA".
- Set up Okta Verify on the user’s mobile device.

Last updated 1 month ago