Set-Up Steps
Open Okta as an admin user, and select Applications from the nav bar
2. Click the Create App Integration button
3. For the Sign-in method, select OIDC - OpenID Connect, then select Web Application for Application Type. Click Next
4. Add a name for your app integration (e.g. Lightyear), select Client Credentials for the Grant Type and enter the following:
Sign-in redirect URIs: https://lightyear-live.auth.us-west-2.amazoncognito.com/oauth2/idpresponse
Sign-out redirect URIs:
5. Select the Controlled access that is applicable for your organisation, then click Save. In our example we have a Lightyear Users group already set-up in the Okta Directory.
6. Now that the application has been set-up, please provide the Client ID, Secret and your Issuer URL (typically your Okta domain) to Lightyear.
At this point you can make any other configuration changes to your application e.g. assigning users.
7. Final configuration changes are made by Lightyear (on Cognito) upon which a new URL for initiating the SSO flow will be passed across.
Please Note: there are setup and ongoing monthly costs involved in the implementation of SSO.