1.1 Create the OIDC app integration
- Okta Admin Console: Applications → Applications
- Click Create App Integration
- Select:
- OIDC - OpenID Connect
- Web Application
- Click Next
- Configure:
- App integration name: TOTAL (OIDC SSO)
- Grant types: Authorization Code and Client Credentials
- Sign-in redirect URI: from the TOTAL Enrollment Console Example: https://app.yourtotal.com/auth/oidc/callback
- Assignments, controlled access: Skip group assignment for now
- Click Save
1.2 Copy values into TOTAL
From the OIDC app’s General tab, copy:- Client ID
- Client Secret
- For the Okta issuer or tenant value, use your Okta domain:
- Example: https://mycompany.okta.com (or your Okta custom domain)
- For the Okta issuer or tenant value, use your Okta domain:
1.3 Grant Okta API scope
In the OIDC app:- Open Okta API Scopes
- Grant okta.users.read