Search

Personal Links

slack button (do not delete)

Okta - OIDC Tutorial

Okta - OIDC Tutorial

Okta - OIDC Tutorial

  1. Log in to the Knock Admin Dashboard as an admin: https://dashboard.knock-ai.com/settings/administration/security/sso-provider
  2. In a new tab, open the Okta Admin Console (admin account required).
  3. In Okta, go to Security → API and copy the Issuer URI from the relevant Authorization Server.
  4. image
  5. Go to Applications → Applications and click Create App Integration.
  6. image
    image
  7. Select OIDC - OpenID Connect, then Web Application, and click Next.
  8. image

Create the Okta OIDC app (Okta)

  1. In General Settings:
    • App name: Knock AI
    • Upload the Knock AI logo (download it from the Knock SSO setup page).
  2. Under Sign-in redirect URIs, paste the redirect URL from the Knock SSO setup page.
  3. Under Trusted Origins, add https://api.knock-ai.com.
  4. Under Assignments, choose which users/groups should have access, then click Save.
  5. Make sure Scopes include at least email and openid.

Copy Okta credentials into Knock (Knock)

  1. In Okta, copy the Client ID and Client Secret.
  2. image
  3. On the Knock SSO setup page, select Okta OIDC from the providers list, paste the Client ID and Client Secret, then click Next.
  4. Under Map claims & Roles, keep email, then click Next.

Finish + test (Okta + Knock)

  1. In Knock, choose whether SSO is Required or Optional, then click Test Connection.
  2. Once the test succeeds, Activate the SSO integration.

✅ Done — Okta OIDC is now connected. Users can sign in using SSO (and email sign-in if you set SSO to Optional).

image