This section describes how to configure your Okta settings and add domains on
TMWS to implement single sign-on
and user synchronization.
Procedure
- Log on to the TMWS management console, and go to .
- Click here on the upper area of the screen.
- On the Authentication Method screen that appears, click Okta.
- Click On or Off to decide whether to
allow users in your Okta organization to visit websites through TMWS if their information is not
synchronized to TMWS or you do
not enable SCIM provisioning in Okta.
Note
Users not synchronized from Okta can be authenticated only through known TMWS gateways or the dedicated port for your organization. - Configure Identity Provider Settings as follows:Service URLIdentity Provider Single Sign-On URL on the Okta admin portalLogon name attributesAMAccountName on the Okta admin portalPublic SSL certificateX.509 Certificate downloaded from the Okta admin portal
- Optionally click Regenerate Token if you want to use a new authorization token in Okta provisioning configuration.
- Click Save.
- On the Directory Services screen, click Add.
- On the Add New Domain screen that appears, type a domain name in the Domain name text box.
- Click Save.
- Repeat the above steps to add more AD domains as necessary.
Important
TMWS retrieves users and groups only in the domains whose name exists on TMWS. Make sure that the domain names match exactly on TMWS and in your Okta organization.