Completing the Identity Provider Configuration

Okta Integration Guide for PTT Pro

Use the information from the JSON response to the well-known URL to complete the configuration of the Identity Provider.

Open the Identify Provider and complete the configuration.

Complete the identity configuration with the proper data.

The example configuration uses the following data.

Authorization URL

https://dev-84941762.okta.com/oauth2/v1/authorize

Token URL

https://dev-84941762.okta.com/oauth2/v1/token

Set

Client Authentication

Client secret as jwt

Sent as Post also works

basic auth also works

JWT Signed with Private Key will fail. The device displays the error,

An Unexpected error when authenticating with the Identity Provider

after entering credentials

Client ID

0oa5km1v306LXN57y5d7

This value is assigned by the Okta system for the Native App definition. Go to Completing the Native App Configuration.

Client Secret

QUndeR7dkcARwPFjVyGVh6NeFjzbs00Md2xWYFLS

This value is assigned by the Okta system for the Native App definition. Go to Completing the Native App Configuration.

Client Assertion Signature Algorithm

is HS256 (HS384 or HS512)

The authentication algorithm is specified in the response from the well-known URL. If the algorithm is not supported, the device displays an authentication error after the credentials are entered.

Enter

openid

offline_access

, and

profile

as space-separated strings in the

Default Scopes

field. These scope values are returned in the response from the well-known URL.

If only

openid

is entered, authentication does not advance beyond the credentials screen.

If only

offline_access

is entered, authentication does not advance beyond the credentials screen.

If only

profile

is entered, the device displays a web page not available error.

Enter

in the

Prompt

field.

The

Consent

and

Select_Account

parameters also work.

Unspecified results in a blank screen on the device after the credentials are entered.

Non results in a blank screen.

Click

Save