# OIDC with Okta {% hint style="info" %} This process can only be fully achieved in collaboration with our team. Exact instructions are provided in the impacted sections below where this exchange of information is required. {% endhint %} ## Create a new OIDC application in the Okta Admin Console 1. Sign-in to your Okta Admin Console. 2. On the sidebar, navigate to **Applications** -> **Applications** 3. On the main view, click the "Create App Integration" button

4. In the Modal Dialog, select **OIDC - OpenID Connect**

5. Choose **Single-Page application** as your application type and click **Next\\**

## Configure OIDC Application ### Under the General Settings tab 1. Choose the name of the connection (that name will appear on your Okta apps) 2. Add application logo (optional) 3. Under **Grant type,** mark all options

4. Under **Sign-in redirect URIs** set [`https://auth.rely.io/login/callback` ]()

4. Remove the sign-out redirect URIs. 5. Under **Assignments** set `Allow everyone in you organization to access` 6. Check `Enable immediate access with`` `**`Federation Broker Mode`** (optional)

## Configure your App OIDC settings and share your connection data with Rely {% hint style="info" %} You can share the data using one of our dedicated channels: * Direct outreach to your dedicated Customer Success Manager * In Slack via your Dedicated Channel (for Enterprise customers) * Via your in-product chatbot * Via email to {% endhint %} ### Get Okta Domain to share with Rely Retrieve the **Okta Domain** by clicking on your user email at the top-right corner of the Okta management interface and copy to clipboard the Okta domain. (The format should be `{YOUR_COMPANY_NAME}.okta.com` )

Share the domain with Rely via dedicated channel. ### Get Client ID to share with Rely. The next step is to retrieve the **Client ID**. This ID is the unique identifier of your Okta app and is required for Rely to establish an SSO connection. Under the **General** tab, copy the **Client ID,** and share it with Rely via a dedicated channel

### Configure OIDC app 1. Under **General** tab, click on **Edit** button: 2. Set **Login initiated by** to `Either Okta or App` 3. Check the **Login flow** to `Redirect to app to initiate login (OIDC Compliant)` 4. Under I**nitiate login URI,** set the following URI:[`https://auth.rely.io/login?response_type=token&client_id=WwUGI5XuLR2BX3Qh1Z9R6PG2XxTUgtM4&connection={CONNECTION_NAME}&redirect_uri=webapp.rely.io`]()

5. Click **Save.** Now you have your Okta OIDC app connection to Rely. --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://docs.rely.io/security-and-compliance/single-sign-on-sso/oidc-with-okta.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.