Okta single sign-on (SSO) - OIDC

Set up Okta authentication to enable secure single sign-on for your Zudello environment using OpenID Connect (OIDC). This guide explains how to configure the required OIDC application settings in Okta.

Zudello uses Zitadel as our authentication provider. Your Zudello implementation consultant will set up the initial connection within Zitadel and provide you with the specific callback URL needed for configuration.

Best practices

To ensure smooth authentication setup:

• Use clear application names
• Configure scopes appropriately for user data requirements
• Test with a limited user group first
• Save configuration details securely

Creating your Okta OIDC application

To set up Okta OIDC SSO for your Zudello team, you will need to:

1. Create a new OIDC web application
2. Configure application settings using the Zudello-provided callback URL
3. Copy the client credentials
4. Provide application details to Zudello

Creating a new OIDC application

1. Log in to your Okta account and go to the applications list: your-okta-domain/admin/apps/active
2. Click Create App Integration
3. Choose OIDC - OpenID Connect
4. Select Web Application as the application type
5. Name the application Zudello
6. Paste the ZITADEL Callback URL provided by Zudello into the Sign-in redirect URIs field

7. Click Save
8. Copy and save the Client ID and Client Secret from the application details

Important note

Please save the client ID and client secret securely before proceeding.
You will need to provide these credentials to Zudello once you have completed all steps.

Completing implementation

Once you have completed the above steps, please securely provide the following information to your Zudello implementation consultant or support@zudello.com:

• Client ID (from step 8 above)
• Client Secret (from step 8 above)
• Okta Domain (your full Okta domain URL, e.g. https://trial-1925566.okta.com

To ensure your information is kept confidential, use a secure password sharing tool like 1Password or LastPass.

Zudello will complete the SSO configuration on our side and notify you when testing can begin.

Testing the configuration

After Zudello has completed the remaining configuration, we will notify you that testing can begin.

To test the Okta OIDC SSO:

1. Open an incognito or private browser window
2. Navigate to https://app.zudello.io
3. Enter your email
4. Click Next
5. Okta SSO will take over the login process from here
6. Once you have logged in through Okta, you will be directed back to the Zudello app

Need help?

Contact your organisation administrator or Zudello support for assistance with Okta OIDC authentication setup.