Configure Single Sign-On (SSO)

Administrators can configure Single Sign-On (SSO) for their organization by adding OAuth providers. The form allows the users to enter key information such as Provider, Client ID, API URLs, and connection details, making it easy to enable secure, streamlined authentication for all users.

Following SSO Providers are supported:

• Oracle Identity Cloud Service (IDCS)
• Google
• Okta
• Auth0
• Microsoft Azure AD
• Amazon Cognito

Steps to Configure Single Sign-On

1. In Agent Factory, select Application settings from the left sidebar, then select the SSO settings tab.

2. Select Add a new SSO provider button and copy the Redirect URL at the bottom of the form.

3. Go to OIM Admin Tool to request SSO credentials.

   1. Select Corp IDCS Self-Service from the left menu.

   2. Select Corp IDCS Production as the IDCS Environment from the dropdown.

   3. Select Do you need an OAuth client only for authentication via Corp SSO from the dropdown as the appropriate use case.

   4. Fill in the required fields:

      • Application Name - your application name

      • Application URL - https://<your hostname>:8080/studio/

      • Email of Application Owner - your email

      • Redirect URL for your application - https://<your hostname>:8080/studio/callback, the one which you copied earlier

   5. Select Create Application button

   6. Owner receives an email upon completion of the request, as shown below

      

      Description of the illustration sso-creds.png

4. Fill in the SSO credentials in the Add a new SSO provider form.

   Required fields include:

   • Provider - select an SSO provider from the dropdown

   • Connection Name - name for your SSO connection

   • Client ID - your client ID

   • Client Secret - your client secret

   • Server Metadata URL - <your IDCS Endpoint>/oauth2/.well-known/openid-configuration

   • Log Out URL - https://accounts.google.com/logout (Only required for Google SSO)

5. Select Add Provider button to save the SSO provider.