Learn how to configure Okta as your identity provider to work with SSO authentication for Firebolt.
https://id.app.firebolt.io/login/callback?connection=<org_name>-<provider>&organization=<organization_identifier>
<org_name>
represents the organization name used to create your Firebolt Account. This org name is referenced in your vanity URL.
<provider>
represents the provider we’re configuring as our IdP.
<organization_identifier>
- the unique identifier for your organization in Firebolt. To retrieve your <organization_identifier>
, do the following:
https://id.app.firebolt.io/login/callback?connection=vsko-okta&organization=org_82u3nzTNQPA8RyoM
urn:auth0:<tenant_name>:<org_name>-<provider>
, where <tenant_name>
is app-firebolt-v2, <org_name>
is the name of organization provider and <provider>
is the provider value set in Firebolt configuration step.
urn:auth0:app-firebolt-v2:vsko-okta
Okta
.signOnUrl
- The sign-on URL, provided by the SAML identity provider, where Firebolt will send SAML requests. The URL is specific to the IdP and is defined during configuration. For Okta, this value corresponds to the Sign on URL value copied in Step 9.signoutUrl
- An endpoint provided by Okta that facilitates the logout process by redirecting the user to this URL, ending their session.issuer
- A unique value generated by the SAML identity provider specifying the issuer value. The issuer corresponds to the Issuer value noted in Step 9.provider
- The provider’s name, Okta
.label
- The label to use for the SSO login button. You can use any label name. If the label is not provided, Firebolt uses the value in the Provider field.certificate
- A digital certificate used to verify the authenticity of a signature used to communication between Okta and Firebolt. The certificate must be in Privacy Enhanced Mail (PEM) or CER format.field mapping
- A mapping used to match user attributes between Okta and Firebolt. Enter the first name and surname in your Okta profile. Mapping is only required the first time a user logs in using SSO.