Skip to content
  • There are no suggestions because the search field is empty.

How to set up Single Sign-On (SSO)

Single Sign-On (SSO) lets your users log in to Vatix using your existing identity provider (Microsoft Entra or Okta), without needing a separate Vatix password.

It is a crucial feature that enhances security and simplifies access management by allowing users to log in to multiple applications with a single set of credentials. By integrating SSO with Vatix, you can ensure seamless and secure access for your employees, streamlining their experience while maintaining robust security protocols.

This article walks through the configuration on your side. Once you've completed your steps, you need to share the required credentials with Vatix and we will enable SSO on your account.

Note: If your organisation has a mix of SSO and non-SSO users (some on identity provider login, some on email/password), tell Vatix during setup so we configure the login screen correctly.


How to set up SSO with Microsoft Entra

Create an application

  1. Log in to the Azure Portal.
  2. Go to 'Azure Active Directory' > 'App Registrations' > 'New Registration'.
  3. Configure the 'Redirect URI' as: https://auth.vatix.com/oauth2/callback
  4. Once the application is created, note the 'Application (client) ID' and 'Directory (tenant) ID' from the Overview page.
  5. Add a second redirect URI for a smooth log-out experience: https://workspace.vatix.com/login/

Create a client secret

  1. Navigate to 'Azure Active Directory' > 'App Registrations' > [Your Application] > 'Certificates & secrets' > 'New client secret'.
  2. Note the 'VALUE' of the created client secret.

Configure consents

You'll need to set up application consents in Microsoft Entra. Microsoft has detailed guides:

Share the values with Vatix

Securely send Vatix the following:

  • Application (client) ID
  • Directory (tenant) ID
  • Client Secret (Value)

How to set up SSO with Okta

Create the app integration

  1. Log in to Okta and go to the 'Admin' panel.
  2. Go to 'Applications' > 'Applications' and click 'Create App Integration'.
  3. Select 'OIDC - OpenID Connect' and 'Web Application', then click 'Next'.
  4. Enter an 'App integration name'.
  5. Confirm 'Authorization Code' is checked.
  6. Set the 'Sign-in redirect URI' to: https://auth.vatix.com/oauth2/callback
  7. Under 'Assignments', select 'Skip group assignment for now' and click 'Save'.

Capture credentials

  1. Copy the 'Client ID' and 'Secret' for use later.
  2. Under 'Sign On', go to the 'OpenID Connect ID Token' section.
  3. Change the 'Issuer' to use the Okta URL.
  4. Save and copy the Okta URL.

Assign users

  1. Go to 'Directory' > 'People'.
  2. Click on the user you want to authenticate.
  3. Click 'Assign Applications', then 'Assign' next to your new application.
  4. Click 'Save and Go Back', then 'Done'.

Share the values with Vatix

Securely send Vatix the following:

  • Client ID
  • Secret
  • Okta URL

What happens next

  1. Vatix reviews your details and proposes a release date.
  2. You confirm acceptance of the proposed date.
  3. Vatix enables SSO on the confirmed date.

Once enabled, your users can log in via your identity provider on their next login.

Note: If you encounter issues during setup, contact support@vatix.com.