The Vudoo Single Sign On (SSO) integration uses an OpenID Connect identity layer to securely connect to your Okta instance. This connection is made by setting up a custom Vudoo Connect App in your Okta instance, letting you assign selected users through a group. This way, selected users can easily log into the Vudoo platform with one click.

This document will step you through setting up the Vudoo Connect App as a once-off setup, as well as how to add users to the Vudoo app when needed!

Note: You must be an administrator of your Vudoo and Okta instance to set up this application.


Before you start
What you will need to follow this guide:

  • Administration access to Vudoo

  • Write access to Okta for editing/creating applications, groups, authentication servers and users

  • Your Vudoo account’s Group ID

    • This can be obtained by your Vudoo administrator

  • Your Vudoo account region URL

    • This is the Vudoo platform URL given to you by your Vudoo representative to access your Vudoo account

Step 1 - Let’s start in Okta

  1. Log into your Okta instance as an administrator

  2. Follow the steps below

Step 2 - Vudoo Group setup guide

  1. In the left-hand navigation click “Directory -> Groups”

  2. In the page that loads, click “Add Group”

  3. Enter the new group details

    1. Name: Vudoo Group ID

    2. Description: Vudoo platform account group id

  4. Click Save

Step 3 - Vudoo Connect App setup guide

  1. In the left-hand navigation click “Applications -> Applications”

  2. In the page that loads, click “Create App Integration”

  3. A pop up modal will then be displayed

    1. Select “OIDC - OpenID Connect”

    2. Then “Web Application”

  4. Click Next

  5. In the New Web App Integration page that is loaded, set the App integration name to Vudoo Connect

  6. In the logo section, you can add the Vudoo logo (or skip this section)

  7. In the Grant type section select or check

    1. Client Credentials

    2. Authorisation Code

    3. Implicit (hybrid)

  8. In the Sign-in redirect URIs section, copy your account region URL and paste it in the input field with this prefix: /xauth/p/token/okta, e.g. example.vudoo.io/xauth/p/token/okta

  9. In the Sign-out redirect URIs section repeat Step 9. You can skip the Trusted Origins section if you like

  10. In the Assignments section

    1. Select or check Limit access to selected groups

    2. Start typing Vudoo in the Selected group(s) input field. An autocomplete will be displayed, then select the Vudoo Group ID group we created earlier

  11. Click Save

Step 4 - Back to Groups

  1. In the left hand navigation click “Directory -> Groups”

  2. In the page that is loaded, click on the Vudoo Group ID group

  3. In the People tab click Assign People

    1. Select the people you want to assign by hovering over the person then clicking the plus icon

  4. Press Save when you have added all the people you need.

  5. In the Applications tab click Assign Applications (If not already assigned)

    1. Search and select the Vudoo Connect application by clicking Assign

    2. Enter in your Vudoo account’s Group ID in the input field

    3. Click Save and Go Back

    4. Click Done

Step 5 - Back to Applications

  1. In the left hand navigation click “Applications -> Applications”

  2. Search and click on Vudoo Connect

  3. Click on the Sign On tab

  4. In the OpenID Connect ID Token section click Edit

  5. In the Groups claim filter section type in groups as the claim name if not already there

  6. Select Contains in the dropdown menu

  7. Enter in Vudoo in the last input field

  8. Click Save

Step 6 - Security setup guide

  1. In the left hand navigation click “Security -> API”

  2. Click Add Authorization Server

  3. In the pop up window fill in the fields like below

    1. Name: Vudoo single sign on

    2. Audience: YOUR_VUDOO_URL

    3. Description: Authorization server for Vudoo single sign on

  4. Click Save

  5. Click on the Claims tab

  6. Click Add Claim

  7. In the pop up window fill in the fields like below

    1. Name: vudoo_group_id

    2. Include in token type: ID Token | Always

    3. Value type: Expression

    4. Value: YOUR_VUDOO_GROUP_ID

    5. Disable claim: Unchecked

    6. Include in: select The following scopes, then search for profile in the input field and select when it shows up

  8. Click Create

  9. Click on the Access Policies tab

  10. Click Add Policy

  11. In the pop up window fill in the fields like below

    1. Name: Vudoo policy

    2. Description: Default Policy for your Vudoo Authorization Server

    3. Assign to: All clients

  12. Click Create policy

  13. Click Add rule

  14. Enter in the Rule Name: Default Policy Rule

  15. Make sure the following are checked leave the rest unchecked

    1. Client Credentials

    2. Authorization Code

    3. Implicit (hybrid)

    4. Resource Owner Password

    5. Any user assigned the app

    6. Any scopes

  16. Click Create Rule

We’re all done with setting up your Okta Vudoo Connect Application!

Step 6 - Over to Vudoo’s platfor

  1. Leave your Okta instance browser window open. We’ll need to come back to your new app settings

  2. Log into your Vudoo instance in a new window as an administrator with your Vudoo credentials

  3. In the top right profile navigation select Account settings

  4. Scroll to the bottom to the Login Options

  5. Click Setup SSO

  6. Select Okta as your SSO Service

  7. Head back over to your Okta instance

  8. In the left hand navigation click “Applications -> Applications”

  9. Search and click on your new Vudoo Connect application

  10. In the Client Credentials section copy the following

    1. Copy: Client ID

    2. Open the Vudoo browser window and paste the Client ID in the SSO Integration Client ID input field

    3. Repeat this for your Client secret

  11. Back over to Okta

  12. In the left hand navigation click “Security -> API”

  13. In the loaded page copy your Authorized Issuer URI

  14. Back over to Vudoo and paste it the Authorized Issuer URL input field

  15. Click Add integration

We’re all done with setting up your Okta Vudoo Connect Application on both Okta and Vudoo. Let’s test it out!

Step 7 - Testing your new SSO connection

  1. Logout of your Vudoo instance

  2. You should now see your Okta sign in button

  3. Click the Sign in with Okta button

  4. If you’re already signed into your Okta instance then you should be automatically logged into Vudoo

  5. If you need to sign into your Okta instance then type your credentials in, then you will be automatically logged into Vudoo

Congratulations! You’re now all set up!


How can I add users to the Vudoo app?

  1. In the left-hand navigation click “Applications -> Applications”

  2. In the page that loads, click on the “Vudoo connect app”

  3. Click Assignments tab

  4. Click Assign then Assign to people

  5. In the pop up window click the Assign buttons to the people you want to add

  6. Click Done

Did this answer your question?