Account and Support

Get Started Account and Support
Changing an unmigrated Koordinates ID email address Change your Koordinates ID password Contacting the administrators of a Koordinates site Edit your billing details Edit your Koordinates ID user name and email address FAQs on the migration of user accounts to Koordinates ID Manage your Koordinates Support tickets Payments on Koordinates Raise a ticket with Koordinates Support Refund and replacement policy Sign up for a Koordinates ID The Koordinates System Status Page Update your communication preferences Create & Use Multi-Factor Authentication (MFA) Koordinates Security Okta Integration with Koordinates ID
File Formats and Data Types Find and Export Data Import Data Manage Your Site Plugins Publish Data Query API and Web Services Site Admin APIs Update Data Users and Groups Desktop App Frequently Asked Questions
  1. Home
  2. Account and Support
  3. Okta Integration with Koordinates ID

Okta Integration with Koordinates ID

Using Okta allow organisation members to sign into Koordinates sites using their organisation directory accounts. 

Koordinates ID Okta integration applies on a per email domain basis, so if it’s enabled for example.com users — all users with an @example.com email address will always be sent to Okta to authenticate. 

It is possible to configure multiple domains against the same Okta application.

Okta Application Integration steps

Registrations are done from the Applications section of the Okta portal. Once someone with appropriate permissions is logged in, the setup of the integration is relatively straightforward:


  1. From the Applications list, choose Create a new app integration.

  2. Under Sign-in method select OIDC - OpenID Connect

  3. Under Application type select Web Application.

  4. Click Next to continue.

New Web App Integration

Set the following values, then Save to continue.

App integration name - Koordinates

Logo - https://cdn-misc.koordinates.com/logos/koordinates-okta.png

Grant type - Authorization Code should be the only option selected

Sign-in redirect URIs - https://id.koordinates.com/social/complete/okta-oauth2/

Sign-out redirect URIs - https://id.koordinates.com/logout/

Trusted Origins Base URIs - (empty) 

Assignments Controlled access - Allow everyone in your organization to access 

Terms of Service URI - https://koordinates.com/terms-of-use/

Policy URI - https://koordinates.com/privacy-policy/

Keys

After everything is saved, Koordinates is going to need the following values to enable the other side of the integration:


  1. General Settings: Okta domain e.g. “dev-abc123.okta.com”

  2. Client Credentials: Client ID

  3. Client Credentials: Client secret


Please provide the Key in a secure manner:

  • Split across multiple communications channels

  • PGP encrypted message

  • via Signal or WhatsApp as a disappearing message