🇫🇲Okta SSO

To configure Brighest to use Okta as your SSO identity provider (IDP), please follow these steps (and share this information with your IT department). For SSO, our application uses OpenID connect (OIDC) and OAuth 2.0 (see: https://developer.okta.com/docs/reference/api/oidc/).

To get started:

1. Visit https://developer.okta.com/

2. Create a multi-tenant Okta application for SSO

3. Set the authentication method to "Client secret"

4. Provide your Brightest Account Manager or Client Success lead with your your application's:

• Client (Application) ID

• Secret

• Okta developer base URL (ex: dev-xyz12345.okta.com)

1. From there, Brightest will configure a unique, signed SSO URL that can be shared with your team to authenticate into Brightest with your Okta directory credentials.

2. To customize the branding and add the Brightest logo to your Okta application, you can access our logo files here: https://www.brightest.io/brand

3. Please also make sure to set your Okta SSO application's URLs:

   • Callback URL: https://www.brightest.io/accounts/multi_okta/login/callback/

   • Logout URL: https://www.brightest.io