OpenMetadata/docs/install/enable-security/okta-sso/okta-config.md

# Configure OpenMetadata Server

## Update conf/openmetadata-security.yaml

* Once the **Client Id**, **Client secret**, **issuer,** and the **audience** are generated, add those details in `openmetadata-security.yaml` file in the respective field.

```
authenticationConfiguration:
  provider: "okta"
  publicKey: "https://{okta_domain}/oauth2/default/v1/keys"
  authority: "{okta_domain}"
  clientId: "{Client Secret}"
  callbackUrl: "http://localhost:8585/callback"
```

* Update `authorizerConfiguration` to add `adminPrincipals`

```
authorizerConfiguration:
  className: "org.openmetadata.catalog.security.DefaultAuthorizer"
  # JWT Filter
  containerRequestFilter: "org.openmetadata.catalog.security.JwtFilter"
  adminPrincipals:
    - "suresh"
  botPrincipals:
    - "ingestion-bot"
  prinicipalDomain: "open-metadata.org"
```