<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z00009uImAYCA0Okta Classic EngineAuthenticationAnswered2023-12-15T19:43:55.000Z2023-12-14T17:05:56.000Z2023-12-15T19:43:55.000Z

User16893322229075893571 (Customer) asked a question.

December 14, 2023 at 5:05 PM
External Identity Provider Connection (Okta to Okta)

Hi,

I am establishing an External Identity Provider connection between my 2 Okta orgs referring the dev.okta docs (Enterprise Identity Provider | Okta Developer).

Following this, I have created an OIDC application in 1 Okta org and created an Identity Provider(for my first okta org) in another Okta org.

My scenario is: The users are coming from first Okta org and they need access to the applications present in second Okta org.

Now my requirement is that the user in first Okta org should be able to access the applications prsent in second Okta org using the App URL(SP initiated flow).

As per the okta docs I can test the connection by supplying appropriate values to this sample AUTHORIZE URL:

https://${yourOktaDomain}/oauth2/v1/authorize?idp=${idp_id}&client_id=${client_id}&response_type=id_token&response_mode=fragment&scope=openid%20email&redirect_uri=https%3A%2F%2FyourAppUrlHere.com%2F&state=WM6D&nonce=YsG76jo

Now,given my configuration setup in both the Okta orgs can you please suggest the appropriate values that should be supplied to this URL in order to test it and confirm the working between the 2 Okta orgs.

 

Thanks and Regards,

Aafreen

  • 1 answer
  • 310 views

  • Mihai Negoita - Okta (Okta, Inc.)

    Hi @User16893322229075893571 (Customer)​ , Thank you for reaching out to the Okta Community! 

     

     This question is more appropriate for our dedicated Okta Developer Forum.

    My advice would be to reach out devforum.okta.com to take advantage of their expertise.  

    While we'll do our best to answer all of your questions here, this medium is more inclined towards Okta core products and features (non-developer work). 

     

    That being said, I ran this query by one of my developer colleagues and they informed me that the values would be dependent on how the OIDC app created on the hub/target org is configured/designed. 

    They also recommended reviewing the following documentation (note that the specific guide will vary depending on the OIDC flow/app type): https://developer.okta.com/docs/guides/implement-grant-type/authcode/main/

     

    For further inquiries into the matter, please refer to our colleagues on the devforum.okta.com side.  

     

    If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

     

    Hope my answer helps! 

    --------------------------------

    Earn Today: New Okta Community Badges Have Arrived

    Expand Post
This question is closed.
Loading
External Identity Provider Connection (Okta to Okta)