How to Connect Okta Identity Provider to ChannelMix
- Inside of the Okta Admin Dashboard, navigate to Applications and select Create App Integration
- Select OIDC - OpenID Connect for the Sign-in method and Web Application for the Application type
- On the next screen, the App integration name can be anything you would like, but something like “ChannelMix IdP Integration” or “ChannelMix OIDC Connection” can be helpful in remembering what this app is used for.
- Keep Grant type default with “Authorization Code”
- For the Sign-in redirect URI enter “https://sso.channelmix.com/oauth2/v1/authorize/callback”
- For Sign-out redirect URIs enter any location you'd like to send your users to after they log out. Our default redirect is "https://app.channelmix.com/user-logged-out" which you can use as well
- Leave Base URIs blank
- Select the desired Controlled access level for your users. By default, we have selected "allow anyone in our organization to access" though you could limit this to certain groups for more fine grained control.
- If you have selected “Allow everyone in your organization to access” you are given the option to immediately grant access to users on their first login so you don’t have to provision them beforehand. Or you could provision these users before they are allowed to use your app.
- If you selected “Limit access to selected groups” you will be asked to select the group(s) you want to limit access to
- Your application is complete! On the next screen you will need to copy the Client ID and Secret and send it to ChannelMix. ChannelMix will also need your Okta Instance URL so it can be configured in ChannelMix's identity provider. For example, this is ChannelMix's URL: https://sso.channelmix.com)
Things to Send to ChannelMix
- Application Client ID
- Application Secret
- Okta Instance URL