Smart Cloud uses Okta as the external federation provider for Single Sign On (SSO). Customer identity validation involves the following steps:
-
When you log-in to Smart Cloud applications, a request is sent to Okta for the validation of the user.
-
Okta sends the request to the customers third-party identity provider.
-
If the user authentication with the customers third-party identity provider is successful then Okta redirects the user to the home page of the Smart Cloud application.
You must perform the following steps to set up the federation:
-
Your IT Team must work with Smart Cloud Team to establish the federation. You can customize the federation as per your requirements using any of the following protocols:
-
OAuth/Open ID Connect (recommended)
-
SAML 2.0 Protocol and so on.
-
-
Share your identity provider details with the Smart Cloud Team.
-
Smart Cloud team generates a unique client ID for your identity provider and shares the the Okta endpoints with your IT Team.
-
Your IT Team sets the Okta endpoints through firewalls to use Okta as a trusted party.
-
The Smart Cloud team adds the newly created identity provider to your estate.
An estate can have more than one identity provider.