Integrating your Okta identity provider
substrate create-admin-account -quality <quality>
will ask for several inputs, which this page will help you provide from your Okta identity provider.
Visit your Okta admin panel in a browser
Click the hamburger menu
Click Applications in the Applications section
Click Create App Integration
Select “OAuth - OpenID Connect”
Select “Web Application”
Click Next
Customize App integration name
Change the first/only item in Sign-in redirect URIs to “https://intranet-dns-domain-name/login” (substituting your just-purchased or just-transferred Intranet DNS domain name)
Remove all Sign-out redirect URIs
Select “Limit access to selected groups” and select the groups that are authorized to use AWS (or choose another option; this can always be reconfigured)
Click Save
Paste the Client ID, Client secret, and Okta domain in response to
substrate create-admin-account
's prompts
With your identity provider integrated, jump to deleting unnecessary root access keys.
Last updated