Please note, this setup guide is for premium accounts only. Pro accounts do not have access to this integration.

📕 Step 1

Log in to Okta as an “Administrator”

Website: https://www.okta.com/products/single-sign-on/

📗 Step 2

Add a user in Okta.

  1. In the Okta admin console, click Users.

  2. Click Add Person.

A form will populate that looks like this:

Fill in the following fields:

3. User type: User

4. First Name

5. Last name

6. Username = users email

7. Groups: This can be skipped, unless you've personally added groups in Okta.

8. Password: set by user.

9. Check the box: send user activation email now.

10. Save

📘 Step 3

The user will receive a welcome email from Okta that looks like the following example:

The email includes:

  1. A link to activate Okta

  2. User's email (username)

  3. Organizations' direct sign-in page

Note: The activation link expires in 7 days & users are prompted to create their own password.

📕 Step 4
Once users are added, connect Trainual as an application in Okta.

  1. Click applications

  2. Click add application

  3. Select “web” as the platform

  4. Select “OpenID Connect” as the sign-on method.

  5. Click next

You'll then be lead to application settings:

  1. Name: Trainual

  2. URL or URI: This is your Trainual account URL. It will look like this example: https://example.trainualapp.com/. Make sure to include the https:// when copying your URL.

  3. Login Redirect URL: This is the same URL as #2 but includes a unique string that should be copied to the end of your URL which you can see here in bold: https://example.trainualapp.com/users/auth/oktaoauth/callback

  4. Logout redirects: You can skip past this.

  5. Group assignments: If custom groups were added in Okta you can add groups here. If not the default is everyone.

  6. Grant type allowed: default- authorization code.

  7. Click done

📕 Step 5

You'll be lead to a page in Okta that provides the client ID, client secret, and Okta domain. Don't close this page.

In a new browser tab, head to your Trainual account to connect Okta as an integration.

Note: Make sure to log in as an admin.

  1. Click settings

  2. Click integrations

  3. Click Okta

  4. Click connect your Okta account

  5. On the blank form that populates, copy over the client ID, client secret, and Okta domain (from your open Okta tab) and paste them in the correlating blank fields in Trainual.

  6. Click submit

Note: To confirm the connection was successful, two buttons will appear on the Okta integrations page within Trainual that say: view integrations and deactivate integration.

To test the single sign-on with Okta, sign out of the account and head back to the login page. You should now see a sign in with Okta button.

If you don't see this button, try clearing your browser history to refresh your page.

  1. Click the button to log in automatically

Note: For first-time logins, it will prompt a sign in with Okta. This login will use the credentials created in Step 3 that was set up during the initial Okta email invitation. Once the first time login occurs, the user will not be prompted to log in again using Okta, it will automatically sign-on.

If you have any additional questions please feel free to email support@trainual.com

Did this answer your question?