Configure OAuth with Okta

How to set up multifactor authentication to your environment or virtualized application.

In this quick tutorial, we will show how to properly configure Okta OAuth 2.0 for Thinfinity® Remote Workspace:

  • Navigate to your Okta space, go to the Applications tab, and create a new application using the 'Create New App' button:

  • Select 'OpenID Connect' as the Authentication Method:

  • Give the application a name, and type in the URL you use to reach Thinfinity® Remote Workspace. Then press 'Save':

  • You should be redirected to the Application Settings. In here, press the 'General' button, and edit the 'Login information'.

  • Configure the 'Initiate login URI' field, by adding the Thinfinity® Remote Workspace website address and “/Okta” at the end of the URL:

  • Copy and paste both 'Client ID' and 'Client Secret' for future references:

  • Click on the 'Assignments' tab and add your users to the Application:

  • Now, open the Thinfinity® Remote Workspace Configuration Manager and navigate to the 'Authentication' tab. Click on OAuth 2.0 and choose 'Okta':

  • Enter your 'Client ID' and 'Client Secret':

  • Click on the 'Server' tab and add the following parameters:

Authorization URL: https://[MyOktaSpace]

Parameters: scope=openid+profile&state=okta

Token Validation Server URL: https://[MyOktaSpace]

Profile Information Server URL: https://[MyOktaSpace]

Login username value in returned Json: preferred_username

You’ll also need to change the name of the Authentication Method to 'Okta' (Or to the URL you configure in the Initiate Login URI)

Press 'OK' after you finish configuring the Authentication Method

  • Click on the 'Mappings' tab and then press 'Add' under the Authentication ID Mask.

  • Add the email address of the Okta user you want to validate and press 'Ok'.

  • Then, under the 'Associated Permissions' field, press on the 'Add' button and search for the Active Directory User:

After you add the appropriate mappings, click on the 'Apply' button.

  • Navigate to the Thinfinity® Remote Workspace landing page, and you should see the 'Sign in with Okta' option listed as an Authentication Method:

Last updated