Single Sign-On (SSO) is an authentication method used by companies to manage employee access centrally. Using an SSO identity provider allows IT admins to control who can access any services used by your company in one place.

SSO give IT admins instant access to multiple software services, so they don't need to register or remove employees from each system one by one.

They allow employees to access all the programs they need by using just one set of credentials.

OAuth 2.0 & OpenID Connect

Jurnee supports configuring SSO with your identity provider using the OAuth 2.0 and OpenID Connect protocols.

OAuth 2.0 is a commonly used open standard for access delegation to server resources on behalf of a resource owner. It specifies a process for resource owners to authorize third-party access to their server resources without sharing their credentials. It was designed to work with HTTP protocol.

Prerequisites

In order to proceed with configuring login with SSO through Okta, you must:

• Have access to an Okta tenant and be an administrator to that tenant
• Have access to a Jurnee account and be an administrator of this account

Supported features

• Service Provider initiated authentication flow. This authentication flow occurs when a user attempts to log in to the application from Jurnee.

Configuration steps

Setting up a new application in your Okta account

1. From the Okta Admin Dashboard, in the Applications page, click Browse App Catalog

1. In the opening page, search and click on the Jurnee app

1. In the opening page click on Add integration

1. Once the application is added, in the Sign On tab copy the Client ID and Client Secret

1. In the Credentials Details set Application username format to Email and click Save

Setting up the new SSO integration in your Jurnee dashboard