OpenMetadata/docs/install/enable-security/okta-sso/okta-server-creds.md

Create Server Credentials

This document is all about how to create an Okta app and configure it for oAuth. It will generate information that is required to perform the single-sign-on activity.

Step 1: Create an Okta Account

• Go to Create Okta Account.
• Provide the required input and click on Sign Up.
• Else you can continue with Google or GitHub.

Step 2: Create the OIDC app integration.

• Once done with signup/signin you will be redirected to the getting started page of okta.

• Click Applications -> Applications available on the left side of the panel.

• Click on Create App Integration button.

Step 3: Configuring the app

• Once you click on Create App Integration button.
• Select OIDC - OpenID Connect.

• Then select the Application type. Select Web Application.

• Once selected, click Next.
• Provide the necessary input and click Save.

• The app is now configured.

Step 4: Where to find the credentials

• Once the app is configured, now the Client Id and Client secret can be used.
• You can also go to Application -> Application like in step 2.
• You should be able to see your application in the list.

• Click on your application.
• You will find your Client id, Client secret, and Okta domain.

• To get your issuer and audience click on Sign On available on top of the form.

Step 5: Adding the details in openmetadata-security.yaml

• Once the Client Id, Client secret, issuer, and audience are generated.

  Add those details in the openmetadata-security.yaml file in the respective field.