<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7VdjSAFOkta Classic EngineAdministrationAnswered2018-09-05T01:30:03.000Z2018-07-12T17:16:26.000Z2018-08-03T17:37:13.000Z

ElmarsL.71356 (Customer) asked a question.

July 12, 2018 at 5:16 PM
We have a client that uses Okta for SSO. They use our NoMachine web app and would like us to authenticate vs Okta. NoMachine prefers to authenticate vs underlying O/S. Our O/S uses PAM/SSSD. Is it feasible to authenticate vs client's Okta from SSSD?
We have a client that uses Okta for SSO. They use our NoMachine web app and would like us to authenticate vs Okta. NoMachine prefers to authenticate vs underlying O/S. Our O/S uses PAM/SSSD. Is it feasible to authenticate vs client's Okta from SSSD?
  • 3 answers
  • 1.21K views

  • DanSacui (Vendor Management)

    In order to connect to Okta from PAM/SSSD you could either use a SCIM Connector for your App which you can download from the admin section of the Okta Org or if you are using LDAP, you could integrate your LDAP instance as a directory in Okta.and authenticate into Okta against the existent LDAP instance.

  • ElmarsL.71356 (Customer)

    Hi, Thanks for the reply.

     

    It would seem to me that we are interested in option 2 - authenticate into Okta against the client's existent LDAP instance ( or whatever authentication mechanism our client has set up in Okta. )

     

    Can we authenticate into Okta directly from SSSD using OpenIDConnect or SAML without installing any provisioning software on our premises?

     

    * Our firm only provides the web application that our client is attempting to access.

     

    * All of the Okta users and applications information belonging to the client are also maintained by our client in Okta.

     

    * Our firm does not store any of our client authentication data.  Our hope is to authenticate directly into Okta against the client credentials datastore.
    Expand Post

  • ElmarsL.71356 (Customer)

    Hi there, could you please provide an answer to my latest questions? Thank you.

This question is closed.
Loading
We have a client that uses Okta for SSO. They use our NoMachine web app and would like us to authenticate vs Okta. NoMachine prefers to authenticate vs underlying O/S. Our O/S uses PAM/SSSD. Is it feasible to authenticate vs client's Okta from SSSD?