1. DropStream
  2. DropStream App
  3. Account Settings

Configure Single Sign-On (SSO)

Avatar
DropStream Support

DropStream supports Single Sign-On (SSO) as an app authentication method, via Okta. If enabled, this can replace username/password login for the DropStream app.

Note: Only DropStream account administrators can configure SSO.

Follow these steps to integrate an Okta OpenID Connect app with your DropStream account.

Create an OpenID Connect app integration in Okta

  1. In the Okta admin console, go to Applications > Applications.
  2. Click Create App Integration.
  3. For Sign-In Method, select OIDC - OpenID Connect.
  4. For Application Type, choose Web Application.

OIDC_app_settings.png

  1. Click Next.
  2. In General Settings, for App Integration Name, specify a name for your application.
  3. Optional: Add a logo to appear on the app tile in the Okta org. The logo file must be .png, .gif, or .jpg format and be smaller than 1 Mb in size. For best results, use a .png image with a transparent background and a landscape orientation. Use a minimum resultion of 420x120 px to prevent upscaling. This DropStream logo is an example.
  4. For Application notes for end users, enter text to display a note about the app on the Okta end-user dashboard.
  5. For Application notes for admins, enter text display a note about the app to admins on the OIDC app page.
  6. Select Grant types that you want to use. Click Advanced to see more grant types. See Configure Direct Authentication grant types for descriptions of each grant type. The grant types available for your app integration depend on the platform that you select.
  7. For Sign-in redirect URIs, enter the URI https://app.getdropstream.com/users/auth/okta/callback.
  8. For Assignments, assign and grant access to the app for the users in your Okta org. You can limit access to only selected groups, or skip this step and assign access later.
  9. Click Save.
  10. Next, you can configure OIDC settings in the General tab. Click Edit to change the options.
  11. The Client Credentials section contains important information necessary for authentication flows. Retain the Client ID. You will enter it later in the DropStream SSO configuration.
  12. In Client Authentication, choose Client Secret.
  13. Select Generate a secret. Click Save to display it. Retain this Client Secret. You will enter it later in the DropStream SSO configuration.
  14. Click Save.
  15. In the General Settings section, set the Initiate login URI to https://app.getdropstream.com/users/auth/okta/login.

Configure SSO in DropStream

  1. Log into DropStream as an account admin.
  2. In the DropStream app header, click your account name and select Account Settings.
  3. Click the Authentication Sources tab, then click Add Authentication Source.

SSO.configure-details.png

  1. Enter an Authentication Source Name, such as "Okta SSO".
  2. For Platform, select Okta SSO.
  3. Leave "Do you want to activate?" checked to immediately enable SSO when the configuration is saved.
  4. Under Adapter Details, enter the Client ID, Client Secret, and Host of the OpenID Connect app (e.g. myhost.okta.com), and click Save.

Your users can now log in to DropStream by clicking the OpenID Connect app icon in the dashboard of your Okta org account.

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request