Overview

Okta is a cloud-based identity management system. This guide shows how Cloud Secure Edge (CSE) integrates with your org's Okta environment to authenticate users that need to register with the app and access CSE-secured services.

How It Works

There are two parts to CSE's integration with Okta for users and devices:

1. Configuring Okta for Access to CSE Services

• The CSE (formerly Banyan) TrustProvider app in Okta allows you to configure specific authentication policies for users accessing CSE-protected hosted websites, infrastructure, and Service Tunnels.

2. Configuring Okta for CSE Device Registration

• The CSE (formerly Banyan) Device Registration app in Okta allows you to configure specific authentication policies for users registering their devices with the app.

Supported Features

The Okta-Cloud Secure Edge integration currently supports the following features:

• IDP-initiated SSO
• SP-initiated SSO
• JIT (Just-In-Time) Provisioning: CSE’s IDP integrations allow for Just-In-Time (JIT) provisioning of User accounts, as well as Group and Role information updating upon login. Updates to the User directory or IDP are reflected in CSE with each new login, allowing for changes in Users' authorization without requiring admins to make any manual changes to Roles or Access policies.

Part 1: Configuring Okta for access to CSE Services

Part 2: Configuring Okta for CSE Device Registration #