Switching Dashboard SSO IdP from One Account (OIDC) to Okta (SAML)

rueben.tiow · December 21, 2023, 10:55pm

Problem statement

This article discusses the best approach for switching Dashboard SSO IdP from One Account (OIDC) to Okta (SAML) while keeping all existing tenant members without disruption.

More context:

The switch is being motivated by business acquisition.
The email domain is also being changed (from @company1.com to @company2.com).
The protocol is also being switched (from OIDC to SAML).

Solution

Due to the number of changes, the best solution is to create a separate connection and replace the older connection.

Add a new SSO connection with Okta (SAML). Enable HRD for @company2.com email domain.
Confirm the new connection is functional.
Delete the current SSO connection with One Account (OIDC) (HRD is enabled for @company1.com email domain).

If the protocol is not changed, modifying the existing connection to point to the new Okta IdP may be another option.

Topic		Replies	Views
SSO for Auth0 Dashboard with Okta (OIDC) Knowledge Articles	1	469	December 7, 2023
Okta IdP-Initiated flow for Dashboard SSO Knowledge Articles	1	644	September 19, 2023
SAML Okta IdP-initiated SSO Troubleshoot Help connections , saml-enterprise-connection	2	1047	October 25, 2023
Change Identity Provider for Dashboard Admin SSO Integration Knowledge Articles idp-update , dashboard-sso-update , idp-change	1	107	July 2, 2024
SSO - IdP Initiated Flow - Okta to Auth0 Help connections , saml-enterprise-connection	5	1646	September 6, 2023

Switching Dashboard SSO IdP from One Account (OIDC) to Okta (SAML)

Problem statement

Solution

Related Topics