This topic tells you how to configure a single sign-on partnership between Okta as the identity provider and Single Sign‑On for VMware Tanzu Application Service as the service provider.
Okta is an enterprise identity management and single sign-on service that integrates with apps in the cloud, on-premises, or on a mobile device.
Single Sign‑On supports service provider-initiated authentication flow and single logout. It does not support identity provider-initiated authentication flow. All Single Sign‑On communication takes place over SSL.
To integrate Okta with Single Sign‑On, you must have the following:
To configure SAML, you must have the Single Sign-On service broker installed on your Ops Manager deployment. You need to create a plan, grant any plan administrators, and specify any organizations this plan should be the authentication authority for. For help configuring plans, see the Manage Service Plans topic.
Complete the steps below to integrate your deployment with Okta and Single Sign‑On.
To test and troubleshoot, see: