Requirements

  • An Okta organization account with admin permission
  • A Bright Data account with admin permission

Steps:

  1. On your Okta admin dashboard, choose ‘Applications > Applications
https://[your_domain]-admin.okta.com/admin/apps/active
  1. Click ‘Create App Integration

  1. Select ‘OIDC - OpenID Connect’ as the Sign-in method,

  2. Select’Web Application’ as the Application type and click ‘Next

  1. At this point you should be redirected to a new web app integration page. Here you can name your app integration (we recommend to use “Bright Data Control Panel” name).

  2. At ‘Grant type’ select Implicit along with Authorization Code

  1. Go to Bright Data Control Panel

  2. Open OKTA configuration dialog

  1. Copy “Sign-in redirect URI”

  1. Paste it to according field in New App setup in OKTA

  1. Repeat the same for “Sign-out URI”

  2. At ‘Assignments’, select an access level as you want

  1. Click ‘Save

  2. Now, you should land on your new app integration settings page.

Copy your Client IDClient Secret, and Okta domain to OKTA setup dialog in your Bright Data Control Panel. 

  1. Click “Activate”.

Skip step 16 if you selected “Allow everyone to access”

  1. Go to “Assignments” tab and assign users allowed to use this integration

  1. Go to Bright Data Settings page and make sure all required users presented.

We’re working on users provisioning support, at the moment - you should manage it manually.

The following steps are optional. They are for enabling your users to launch authentication from their dashboard or the Okta Chrome extension.

  1. Scroll down to ‘General Settings’ and click Edit

  2. Set these settings:

  • Login initiated by: Either Okta or App
  • Application visibility: Display application icon to users
  • Login flow: Redirect to app to initiate login (OIDC Compliant)
  • Copy Initiate login URI from Control Panel

  1. Save changes. Now the integration is ready to work.

Notes

  • Okta Domain should be the one that appears in your app integration settings (yourcompany.okta.com), NOT the one you are seeing as an admin (yourcompany-admin.okta.com)

  • Make sure the Credentials provided to Bright Data are correct, we cannot check them on our side.

-  Sign-in Redirect URI is a must in order to make the SSO feature work correctly
-  Initiate login URI is needed if the you wants to be able to use the feature from the Okta Chrome extension or the Okta dashboard