Okta

PLEASE NOTE - if you are using the Crewmojo test environment you will need to follow the manual configuration instructions

Supported Features

• Single Sign-On (OpenID Connect) initiated via Okta or initiated by Crewmojo

• SP-initiated Single Logout

Installation

In the Okta admin console

1. Install the Crewmojo app in your Okta instance

2. In the Okta admin page, click on the Crewmojo application and then navigate to the Sign On tab

3. Copy the values of Client ID and Client secret (click the eye button to toggle the visibility)

4. Make a note of your Okta domain e.g. example.okta.com (see here) NB: ensure there is no https:// prefix on the domain

In your Crewmojo account

1. Navigate to the Company Settings

2. Select the Integrations tab

3. On the Okta integration card, enter the Client ID Client Secret and Okta domain that you acquired and click Enable Okta

4. If the settings are validated you will see the card change to show the enabled settings

5. Turn on Single Sign-On in Crewmojo

How to initiate the SP flow

Once you have enabled Single sign-on via Okta in your Crewmojo account settings, trigger the SP flow to via login by doing the following:

• Go to https://crewmojo.app, enter your account name and click login.

• Alternatively, visit https://<account-name>.crewmojo.app and click login.

Notes

For users to be able to log into Crewmojo their accounts must exist in Crewmojo already - they do not get automatically created from Okta. Please ensure the Okta email address or username matches the email address or Employee Code in the Crewmojo account for the SSO to work