ManirajS.15945 (Customer) asked a question.
Hello Team,
We are following below link to configure CBA
https://help.okta.com/oie/en-us/content/topics/apps/office365/certificate-based-authentication.htm
We are kind of stuck following step 7
Add an authentication policy rule
In the Admin Console, go to Applications Applications.
Select the Office 365 app where you want to enable certificate-based authentication.
Click the Sign On tab and scroll down to the User authentication section.
Click view policy details.
Click Add Rule.
Enter a Rule Name.
Configure IF conditions. These conditions specify when the rule is applied.
IF
Description
AND Client is
Select One of the following clients Certificate Based Authentication.
Optionally, you can select other clients along with certificate-based authentication.
I don't see User authentication section at all \ please refer attached screenshot for exact missing part
All I see that add rule is the above steps or documents are correct ?
FYI we already enable below options in Features \ Early access
Certificate-based Authentication for Office 365
Okta Identity Engine now supports certificate-based authentication for WS-Fed SSO requests. Users can authenticate using smart/PIV cards to seamlessly access their Windows devices and Office 365 applications.
Hi @ManirajS.15945 (Customer) , Thank you for reaching out to the Okta Community!
As far as I can see, this feature is only available for the Okta Identity Engine (OIE) orgs. Are you using an OIE or a Classic one?
If you don't know, you can check by leveraging the https://<yourDomain>.okta.com/.well-known/okta-organization (make sure to replace domain with appropriate value) endpoint in any browser.
This will provide some basic public info including "pipeline" - if it says "v1" it means it's Classic, if it says "idx", it means it's OIE.
Regards.
--
Help others in the community by liking or hitting Select as Best if this response helped you.