This guide provides instructions for setting up Single Sign-On between Okta and Bentley's Identity Management System (IMS), for your corporate users.
This guide assumes that your Okta tenant is properly set up on a SSL /TLS endpoint using HTTPS, and that the authentication address is accessible by your corporate users.
Create the application in Okta
At the bottom of this page is the “Assignments” option. This is asking you who should be allowed to use the application. We recommend “Allow everyone in your organization to access”, however, there is also the option “Limit access to selected groups” if you’d prefer to control access to Bentley.
Note: If you choose to allow all users, you will be prompted if you’d like to utilize federation broker mode. You may or may not turn this on, up to you.
Configuring the Redirect URI's