This article includes screenshots and descriptions of the Okta web site. Third party sites are subject to change at any time and as a result, these screenshots may not look exactly the same as the things you see yourself within Okta. It is likely that the overall flow and process will remain the same, but if in doubt, please contact RIPA Support.


Once you have created the RIPA "app" inside your Okta account, you can enter its details into RIPA Expenses to complete the connection between the two systems.


Information you must gather first


To configure RIPA you need three pieces of information from your Okta account - the RIPA "app" client ID, client secret and 'site'. You'll need to be an Okta administrator to do this.


1. Sign in to Okta with your administrator account


You should see something like this:



2. Navigate to Applications -> Applications and select your Okta "app"



3. Find your client ID


Look for the section shown below. Your client ID can be copied to your clipboard using the blue icon on the right, making it easy to paste into RIPA Expenses (see later sections showing where this is done).



4. Find your client secret


Look for the section shown below. Your client secret can also be copied to your clipboard using the blue icon on the right, again making it easy to paste into RIPA Expenses (see later sections showing where this is done).


 

5. Find your site


This is revealed by clicking on your username in the top right corner of the screen. This time there's a dark grey clipboard icon which lets you copy the information, ready to paste into RIPA Expenses (see later sections showing where this is done).



With these three pieces of information, you will now be able to configure the connection to Okta within RIPA Expenses either as an administrator performing first-time account setup, or later, if you decide to add Okta support redsome time after starting using RIPA Expenses.


Setting up Okta during first-time setup


The very first person to sign into a new RIPA Expenses system is the original system administrator. As this administrator, you receive an e-mail that helps you walk through the first-time setup wizard described here. Once you get to the "Signing in" section, choose "Okta" from the drop-down. You'll see this:



Here you can see the type-in fields where the client ID, client secret and site values must be entered. Once you've filled those in, click on "Next" to save the information and move on to the next wizard step.


This approach is the recommended way to set up RIPA Expenses if you want to use Okta. It allows your own administrator account itself to immediately sign in that way. If you want to set up Okta later, it can be done (see below) but you'll need assistance from RIPA Support to add Okta as an additional supported sign-in method and, should you wish to then use it for your own administrator account too, RIPA Support will also need to assist with that (these barriers are present for security reasons). Usually, it's much easier just to configure Okta from the get-go!


Setting up Okta later


As an administrator, you may configure your RIPA tenancy with your Okta app client ID and secret. This configuration in RIPA by selecting "Administration --> System settings".



If you scroll through the settings form, you may find the Okta section where you can enter the client ID, client secret and site values described above.


  • If you don't see this in your settings, it's because your RIPA Expenses system has not been configured to allow Okta sign-in for anyone. Please contact RIPA Support to get this enabled.



You must scroll to the end of the form and click on "Update settings" to save the changes you've made.



Once the settings are updated, a message will flash at the top of the page indicating success.



Okta is now configured.


User configuration


Users may now self-configure for Okta sign-up.