Okta OIDC SSO

Last updated: March 24, 2026

Create app integration

Visit the Okta Administrator Console and click Applications in the left navigation bar. Create a new integration and select the following options:

  • Under Sign-in method, select OIDC - OpenID Connect.

  • Under Application type, choose Web Application.

Update application metadata

Update the App integration name to Hadrius. If you would like to add a logo, reach out to our team and we will get you a high-resolution file.

Under Grant type, select both Authorization Code and Refresh Token in the Core grants section.

Update both the sign-in and sign-out redirect URIs to https://app.hadrius.com/auth/sso

Update Assignments to match your needs. An example is shown below with access for the full organization.

Example assignments with access for the full organization

Update Okta API Scopes to allow Hadrius to see profile information. Add okta.myAccount.profile.read to the granted API scopes.

Granted API scopes

Send Hadrius the details

From the General tab, copy the Client ID and Client secret. Share these values with the Hadrius team.

The client secret is sensitive information. You can use flashpaper.hadrius.com to generate a one-time use secure link.

From the Sign On tab, scroll down to the OpenID Connect ID Token section. Update the Issuer URL to a static URL. Save this value and share with the Hadrius team.

Issuer URL set to static value