User Guide: Adding Peaxy Lifecycle Intelligence to Your Okta Account

Introduction

This guide provides step-by-step instructions for users to add and configure the Peaxy Lifecycle Intelligence application in their Okta account for Single Sign-On (SSO) using OpenID Connect (OIDC).

Prerequisites

Before proceeding, ensure you have the following:

  • Administrator access to your Okta environment.
  • The required domain value for your organization’s integration.
  • Access to Okta’s Admin Console.

Supported Features

Peaxy Lifecycle Intelligence OIDC integration supports the following features within Okta:

  • SP-initiated SSO
  • IdP-initiated SSO
  • JIT (Just-In-Time) Provisioning

Step 1: Accessing the Okta Admin Console

  1. Log in to your Okta account.
  2. Navigate to the Admin Console by clicking your name in the top right corner and selecting Admin.
  3. In the left menu, click Applications > Applications.
  4. Click Browse App Catalog.

Step 2: Searching for Peaxy Lifecycle Intelligence

  1. In the search bar, type Peaxy Lifecycle Intelligence.
  2. Click on the Peaxy Lifecycle Intelligence application from the search results.
  3. Click Add Integration.

Step 3: Configuring the Application

  1. Enter a Display Name for the application.
  2. Enter a valid domain for the application, e.g. okta-your-organization. Peaxy can provide a recommended value.
  3. Choose the appropriate Assignment Type:
    • Allow everyone: All users can access this application.
    • Allow specific groups/users: Select specific groups or users who should have access.
  4. Click Next.

Step 4: Assigning Users or Groups

  1. In the Assignments tab, click Assign.
  2. Choose Assign to People or Assign to Groups.
  3. Select the users or groups who should access Peaxy Lifecycle Intelligence.
  4. Click Done.

Step 5: Configuring Sign-On Settings

  1. Go to the Sign-On tab.
  2. Ensure the Sign-On Method is set to OpenID Connect.
  3. Note the Issuer URL (e.g., https://yourtenant.okta.com/oauth2/default).
  4. (Optional) Configure additional security settings such as multi-factor authentication (MFA).
  5. Click Save.

Step 6: Providing Client Credentials

To enable multi-tenancy support, each tenant must provide the following credentials:

    • Client ID: This is a unique identifier for the tenant’s Okta application.
    • Client Secret: A secure key required for authentication.
  • Domain: The variable set in Step 3.
  • Issuer URL: The Okta org URL (e.g., https://yourtenant.okta.com/oauth2/default).

How to Provide Credentials:

  1. Securely share the Client ID and Client Secret with the Peaxy Lifecycle Intelligence team.
  2. Ensure the credentials are provided in a secure manner (e.g., encrypted communication, secure vaults).
  3. If you need to rotate your Client Secret, notify Peaxy Lifecycle Intelligence to update their records.

Step 7: Testing Your Login through IDP

  1. Go to the Okta dashboard.
  2. Locate Peaxy Lifecycle Intelligence under your assigned applications.
  3. Click the application icon to launch it.
  4. You should be redirected to the application and signed in automatically.

SP-initiated SSO

The sign-in process is initiated from Peaxy Lifecycle Intelligence.

  1. From your browser, navigate to the Peaxy sign-in page.
  2. Click on “Sign-in with Okta” and enter your credentials

If your credentials are correct, you are redirected to the application dashboard.

Troubleshooting

  • If you receive an error, verify that your user account is assigned to the application.
  • Ensure your organization’s Okta administrator has properly configured the OIDC settings.
  • Check the Okta System Log for authentication errors.
  • If login fails due to invalid credentials, ensure that the correct Client ID and Client Secret are used.

Conclusion

You have successfully added and configured Peaxy Lifecycle Intelligence in Okta for SSO. If you encounter any issues, contact your IT administrator or Okta support.