Skip to main content

Setting up SSO with Okta

Rhombus Support
Updated

In this article below we will go over how to set up SSO with Okta via the Rhombus console and Okta console.

Single Sign-On Options

Single Sign-On, or SSO, is a way to sync sign-on across multiple applications allowing you to log-in to all applications with one user account and password. 

1. Navigate to the "Settings" Page.

Screenshot 2023-10-11 at 9.16.13 AM.png

 
2. Select "Single Sign-On" under the Accounts and Users section

Screenshot 2023-10-11 at 9.19.23 AM.png

 

3. Click the dropdown for "Single Sign-On" and select any of the options you wish to include.

  • Toggle On Single Sign-On if you wish to use it. 
  • Select specific users as "Recovery Users". Recommended to have at least two recovery users. 
  • Enable SSO for Rhombus Key if desired.
  • Toggle On Just-In-Time User Creation if desired. Just in Time User Creation can be enabled to dynamically create a Rhombus user account matching the SSO login email the first time that user logs into the console.

Screenshot 2024-09-11 at 10.14.10 AM.png

 

Recovery Users

A Recovery User is a user account in your organization which bypasses SAML once enabled. 

Note: It is recommended to have at least two Super User Accounts as Recovery Users when enabling SSO to ensure you have a method of logging and disabling SSO in the event SAML encounters errors.

Enabling a user account as a Recovery User is done during the SSO configuration process.

  1. Click the dropdown menu next to SSO Recovery Users that says "Select Users".
  2. Click on every user you wish to have selected. A Blue Checkmark will indicate a Recovery User.
  3. When finished, selection OK.
 Screenshot 2024-09-11 at 10.17.00 AM.png

 

Okta Setup

1. Sign into your Okta account.

Navigate to "Applications", click "Browse App Catalog" and search for Rhombus.

Select "Rhombus Systems."

Screenshot 2024-09-11 at 10.23.43 AM.png

 
2. Select "Add Integration."

Screenshot 2024-09-11 at 10.27.50 AM.png

 
3. Select "Done."

Screenshot 2024-09-11 at 10.30.10 AM.png

 

4. The Rhombus Systems application is pre-configured to pass Okta groups as part of the SAML assertion. To configure, follow these steps:

  • In Okta, select the Sign On tab for the Rhombus Systems app, then click Edit.

Screenshot 2024-09-11 at 10.43.43 AM.png

 

  • Select your preferred group filter from the roles dropdown list.

    • Example: Use the Matches regex rule with the value .* in order to send *all* groups to the Rhombus Systems for the attribute.

Screenshot 2024-09-11 at 10.51.10 AM.png

 

  • Scroll down and click Save.

Screenshot 2024-09-11 at 10.53.06 AM.png

 
5. Navigate to the Assignments tab and click the Assign button with the drop-down icon.

Screenshot 2024-09-11 at 11.02.46 AM.png

 

  • Select "Assign to People."

Screenshot 2024-09-11 at 11.04.39 AM.png

 
6. Select the user(s) you want to assign the rhombus app to by hitting the "Assign" button next to the desired user(s).

Screenshot 2024-09-11 at 12.09.33 PM.png

 

  • Another popup will appear. Keep the email address as the User Name and select "Save and Go Back."

Screenshot 2024-09-11 at 2.36.16 PM.png

 

  • Select "Done." 

Screenshot 2024-09-11 at 12.14.29 PM.png

 
7. Navigate back to the Sign On tab. 

mceclip4.png

 
8. Scroll down and click on the "Actions" button, then select View IdP metadata. 

Snip20220812_154.png

 
9. Right-click on the page and select "View Page Source." This will change the format so the data can be properly copy and pasted. 

Screenshot 2024-09-11 at 2.28.41 PM.png

 
10. Highlight the entire page of XML data and copy. 

Screenshot

 
11. Paste the XML data into the 'IDP MetaData XML' box below, then toggle the 'Use Single Sign-On' button at the top to turn it on, and then hit save in the upper right.

Screenshot 2024-09-11 at 12.22.36 PM.png

 

12. If you are adding a new user through Okta, you will then have to add the user in the Rhombus console and apply a role to the user. You can automate the process of adding users by setting up SCIM with Okta, to do that, check out this article How to configure SCIM 2.0 with Okta.
 

 

Helpful Links

Contact Support or Sales

Have more questions? Contact Rhombus Support at +1 (877) 746-6797 option 2 or support@rhombus.com.

Interested in learning more? Contact Rhombus Sales at +1 (877) 746-6797 option 1 or sales@rhombus.com.

Related articles

Comments

0 comments

Please sign in to leave a comment.

Powered by Zendesk