All Riot admins have the ability to configure a default Identity Provider to power Single Sign On (SSO). This article details how to configure Okta as the primary Identity Provider to facilitate SSO with the Riot application.

Supported Features

• Identity Provider (IDP)-Initiated Authentication (SSO) Flow - This authentication flow occurs when the user attempts to log in to Riot from Okta.
• Service Provider (SP-Initiated Authentication (SSO) Flow - This authentication flow occurs when the user attempts to log in to Riot from Riot.

Requirements

In order to proceed with configuring login with SSO through Okta, you must:

• Need to be connected to an Okta Tenant.

• Be an Okta administrator to that tenant.

• You will need to have a Riot account, you can create your account for the first time by using the magic link authentication.

Configuration Steps

The following documents the configurations for setting up the OIDC integration between Riot and Okta. Okta is the Identity Provider (IDP) and depending on the use case, the user will be redirected to Okta for authentication if no session has been established.

To configure your provisioning settings for Riot in Okta, there are three main steps to follow:

Step 1 - Add the Riot App to Okta

1. Login to your organization’s Okta tenant.
2. Navigate to Applications > Applications > Browse App Catalog, search for “Riot Single Sign-on”, and then click on it and Add Integration.
3. Enter an Application Label in General Settings. This is the name under which the Riot app will appear in your Okta dashboard.
4. Click Done.
5. Then under the Sign On tab of the Riot application, copy the Client ID and Client Secret (It will be used later to send them via email to Riot).
6. In Credentials Details, pick E-mail as application username format & create and update for the Update application username, click save
7. Assign the admins of Riot from the assignments tab.