All Collections
Settings and integrations
Integrations
Okta Integration
Okta Integration
Michael Donlin avatar
Written by Michael Donlin
Updated over a week ago

Jeli and Okta Integration Guide

Jeli is integrated with Okta, a platform for Single Sign-on (SSO) and identity management, so that you can seamlessly sign in to the Jeli web app without creating new users and keeping control of who in your organization has access.

Supported Features

The Jeli Okta integration uses SP-Initiated or IdP-Initiated SSO to log users into the Jeli web app on our website, configured and backed by Auth0.

Requirements

Before adding the Jeli Okta integration, you’ll need to create an account with Jeli to set up a license. You can sign up your organization to begin using Jeli here.

Configuration Steps

Adding the Jeli app in Okta

Okta’s network for apps is the Okta Integration Network, or OIN. There, you can search for apps to integrate with your Okta account, giving you access to various services.

To add the Jeli app in Okta:

  1. Sign into your Okta admin panel. You will need admin or super admin privileges to do so.

  2. On the left nav bar, click the “Applications” drop down, then select the option also named “Applications” underneath.

  3. You should see a list of all the applications you’ve authorized for your Okta account here, as well as a menu to create or add new apps. Click the blue button marked “Browse App Catalog” in the middle of your screen.

  4. You should see a search menu listing available apps to add. Type “Jeli” in the search bar to find the Jeli Okta app. It should look like this:

  5. The overview page details how the Jeli app will interact with both Okta and your systems along with the access and provisioning the app requires. Click the blue “Add” button to begin the setup.

  6. Next, you’ll see a General Settings page. The default options should be sufficient for most use cases. Click the blue “Done” button to finish adding the Jeli Okta integration.

You can confirm that the app is integrated into your Okta organization by navigating to the “Applications” page, which should now contain an entry for Jeli.

Jeli Configuration Steps

When setting up your organization with Jeli, provide the following information to your Jeli onboarding support representative:

  1. Your company’s name.

  2. Your Okta organization’s Client ID for this integration. To find yours:

    1. Navigate to the Jeli app in Okta.

    2. Click on the “Sign On” tab and then copy the Client ID value by clicking the clipboard icon next to it.

  3. Your organization’s Client secret for this app integration. This can be found just below the Client ID (see #2 above)

  4. Your organization’s Okta domain. For example, if your Okta organization URL is https://example.okta.com, the domain for your company would be “example.okta.com”. For more information on locating your organization’s URL, see: https://developer.okta.com/docs/guides/find-your-domain/findorg/.

    1. If your organization uses a custom domain, such as https://sso.example.com, then please provide Jeli with the fully qualified domain.

Updating the App integration in Okta

You’ll also need to add the Okta subdomain Sign On settings. Go to the same Sign On tab in the app as noted above and scroll down to Advanced Sign-on Settings to fill in your Okta subdomain. In the example below, your subdomain would be “acme” as part of “https://acme.okta.com”. If your organization uses a custom domain for Okta, please use your company name instead and provide that to Jeli.

📣 The Okta subdomain should be all lowercase characters.

Managing user access to the Jeli app in Okta

Before your team can start logging in to Jeli through Okta, you will need to provide them access via the Okta admin console. Adding Jeli’s Okta app allows you to assign privileges to use the app, which can be done at the user level or the group level, depending upon your requirements.

Assigning Jeli to a user

If you’re looking to authorize a small number of users to access Jeli, Okta allows you to assign privileges at the individual level.

  1. Navigate to the Applications page by clicking the “Applications” drop down and then clicking the submenu item also called “Applications.”

  2. Select the Jeli Okta app in your list of Active apps.

  3. Navigate to the “Assignments” tab, then click the blue “Assign” drop down button and choose “Assign to People.”

  4. Find the user you wish to assign the app to, either by scrolling down the page until you find them or using the search bar

Assigning Jeli to a group

Sometimes it’s easier to manage access to an app as a group. Okta provides a default “Everyone” group, or you can create and populate a separate group, then give entire groups access to Jeli. Like above, the “Assignments” page provides the ability to “Add,” “Edit,” or “Remove” access. Select the “Groups” submenu on the left to display all authorized groups. Under the “Assign” menu, choose “Assign to Groups,” then select the group you wish to authorize.

Removing access to Jeli

You can revoke access to Jeli’s Okta app using the same process as assigning access. On the “Assignments” page listing authorized users, click the X button to remove a user from the app. If the user was granted access through a group, you can either remove the user from the group or on the app’s “Assignments” page you can click the X button on the group tab to remove the entire group.

Logging into Jeli.io

  1. Navigate to https://app.jeli.io. If you’re logged out, you’ll see a button to sign into Jeli .

  2. Click the button to be redirected to Jeli’s login form, which will list SSO providers and an email form entry.

  3. Enter your email to enter the login flow for your Okta domain (Jeli uses Home Realm Discovery based on your email).

  4. Upon successful login, or if you’re already logged in, you’ll be returned to Jeli where you can start interacting with the Jeli web app.

Information used by the Jeli app

Jeli’s app integration with Okta is used for Single Sign-on (SSO) into the Jeli web app using your organization’s Okta account. We collect the following information for each user who signs in:

  • openid - This is the unique identifier Okta uses to identify your account.

  • email - Jeli uses email addresses to verify the organization’s domain, link individuals to their Jeli user account, and associate linking accounts on various other services like Slack and Pagerduty.

  • profile - We fetch first and last names (where applicable) from Okta user profiles to identify users and update Jeli profiles where needed.

Jeli does not require any access to the Okta API scopes and none should be granted. You can confirm this by going to the ”Applications” page, selecting Jeli, and navigating to the “Okta API Scopes” tab.

Troubleshooting

If for any reason you’re having difficulty signing in to Jeli using Okta credentials, try the following:

  • Make sure the user signing in has access to your Okta account and can sign in to your own Okta web portal independently of Jeli.

  • Check that the Jeli Okta app is added to your Okta account and that it is in the “Active” state, as listed on the “Applications” page.

  • Confirm the user is authorized to use the Jeli app and their name is on the “Assign Applications” list (see: Assigning Jeli to a User / Group)

  • Confirm that you’re using the domain Jeli has associated with your organization. For instance, if your company is Example, Inc, and your domain is example.com, that your email is user@example.com.

  • Contact your Jeli support representative to investigate further.

📣 If you run into any issues during setup, reach out to support@jeli.io or live chat from any screen in Jeli, we're here to help!

Related Articles
Getting set up in Jeli
PagerDuty Integration
Opportunity Level Access Controls
Jira Integration
Jeli Settings & Integrations Overview
Did this answer your question?