LATEST VERSION: 1.5 - CHANGELOG
Single Sign-On v1.5

Testing

This topic describes how an administrator can test the connection between SSO and Okta services. An administrator can test both service provider and identity provider connections.

Test Your Service Provider Connection

  1. Log in to Apps Manager at https://apps.YOUR-SYSTEM-DOMAIN and navigate to the organization and space where your application is located.

  2. Under Services, locate the service instance of the Single Sign-On (SSO) plan bound to your application and click Manage.

    Click service

    Okta click manage

  3. Under the Apps tab, click your application.

    Select authcode app tile

  4. Under Identity Providers, select the Okta identity provider.

    Click okta pcf

  5. Return to Apps Manager and click on the URL below your application to be redirected to the identity provider to authenticate.

    Authcode sample address

  6. Click the link.

    Authcode sample

  7. On the identity provider sign-in page, enter your credentials and click Sign In.

    Pivotal signing

  8. The application asks for authorization to the necessary scopes. Click Authorize.

    Popup authcode

  9. The access token and ID token displays.

    Okta authcode sample code

Test Your Identity Provider Connection

Note: SSO does not support identity provider-initiated flow into applications, but it does redirect the user to the User Account and Authentication (UAA) page to select applications assigned to the user.

  1. Sign into Okta.

    Pivotal signing

  2. Navigate to the application tile and click it.

    Pcf app tile

  3. You are redirected to the page that lists applications you have access to.

    App list

Test Your Single Sign-Off

Test single sign-off to ensure that when users log out of the application, they are logged out of Okta as well.

  1. Sign into the sample application. Information about the access and ID token displays, as well as the “What do you want to do?” section.
  2. Under “What do you want to do?”, click Log out.

    What do you want

  3. You are logged out and redirected to the Okta login page.

    Pivotal signing

Create a pull request or raise an issue on the source for this page in GitHub