This guide shows how to configure Okta as an OIDC single sign-on identity provider (IdP) for your Honeydew account.

1

Set up your identity provider (IdP)

Create the Honeydew app integration in Okta.

  1. Login to your Okta Admin Console

  2. Go to Applications > Applications and then click Create App Integration.

  3. In the Create a new app integration dialog, choose OIDC - OpenID Connect as the Sign-in method.

  4. Choose Web Application as the Application type and click Next.

  5. Choose a name for the app integration (e.g. Honeydew), and add an application icon (you can use the Honeydew logo).

  6. In the Sign-in redirect URIs field, add the following URI: https://auth.honeydew.cloud/login/callback

  7. In the Sign-out redirect URIs field, add the following URI: https://app.honeydew.cloud

  8. In Assignments, choose the users or groups that will have access to the Honeydew app.

  9. Click Save.

  10. In the newly created app integration, and go to the General tab. Save the following information as displayed in the General tab:

    • Client ID (displayed in the Client Credentials section)
    • Secret (displayed in the Client Secrets section, click Show to display the secret)

    This information will be needed once we configure the integration in Honeydew.

2

Configure Okta Integration in Honeydew

Now that we have our Okta app integration ready, we need to configure it in Honeydew.

Please pass the following information to your Honeydew contact or to support@honeydew.ai:

  • Okta Domain: The domain used to access your Okta account (e.g. mydomain.okta.com)
  • Client ID you have saved from the Okta app integration in the previous step
  • Client Secret you have saved from the Okta app integration in the previous step
  • Email domain used in your company’s email addresses

You will receive back from Honeydew the following information:

  • Initiate login URI (something like https://app.honeydew.cloud/login?connection=<dedicated connection name>)
3

Finish Honeydew app integration configuration in Okta

  1. In Okta, go to Applications > Applications and select your application name. Select the General tab and click Edit.

  2. Scroll down to the Login section. In the Login initiated by field, change the selection to Either Okta or App. In Login flow, select Redirect to app to initiate login (OIDC compliant). In Initiate login URI, add the URI you received from Honeydew.

  3. Scroll to the bottom of the Login section and click Save.

  4. Optionally, assign any users or groups that should have access to Honeydew.

  5. Once the configuration is complete, you can test the OIDC setup by logging in to Honeydew. Any user with an email address that matches the domain you provided will be able to log in using Okta. Upon login they will be redirected to the Okta login page.