When the value of the LGNCON install parameter is set to ROPC, the web service authentication happens using the OpenID Connect Resource Owner Password Grant authentication flow. The following section details about the configuration required in EAM to support ROPC.
-
Complete the configuration as described in the Configuring HxGN EAM application with OpenID Connect details of Okta.
-
Copy the value of the token_endpoint and set it as the value of the Token Endpoint field on the SSO Configuration screen of the EAM Application. The token_endpoint can be obtained from Metadata URI of Okta.
-
Set the value of the Client Password field on the SSO Configuration screen of the EAM application to the client secret generated in the Configuring OpenID Connect confidential client in Okta section.
ROPC will only work if MFA is not enabled for the user.