To access the following settings, click Account Settings icon.  in the menu and select Single Sign-On.

Note: Only available in accounts with a Growth or Enterprise plan. Contact our Support Team for assistance in upgrading. 

OpenID Providers

OttoLearn supports single sign-on (SSO) for our desktop and mobile apps through OpenID Connect. 

To set up a new SSO provider, open the Identify Providersdropdown and select Create ID Provider

Open ID Providers section that includes dropdown with Create ID Provider option and list of ID providers that have been added. In this case OKTA provider has been added.

Settings 

Settings section that includes the following fields. Name, Issuer, and Client ID.

Name

The name you want to use to identify the SSO provider. 

Issuer (Required)

The page users are redirected to for login (SSO login page).  

Client ID (Required)

The ID found in the settings when adding OttoLearn as an application in your provider. 

Advance Settings
Advance Settings section that includes the following fields. Status, authorization endpoint, token endpoint, userinfo endpoint, JWKS URI, JWKS, client secret, and username claim.
Status

Set whether the provider is available (Active) or unavailable (Inactive) in your account. 

Authorization Endpoint

The endpoint that authenticates the end-user.

Token Endpoint

The endpoint used to obtain an access token and ID token. May also obtain a refresh token (optional). 

UserInfo Endpoint

The endpoint (OAuth 2.0 protected resource) that returns claims about the authenticated end-user. 

JWKS URI

The Universal Resource Identifier (URI) that returns the JSON Web Key Set (JWKS) for verifying the ID token.

JWKS

The JSON Web Key Set (JWKS) used to verify the ID token.

Client Secret

A secret used for extra authentication by some identity providers.

Username Claim

The ID token claim that should be used to find an Otto user.