KevinT.51061 (Customer) asked a question.
Does Okta offer an Identity Broker solution?
Does Okta offer a broker solution which allows multiple IdPs to access a single downstream application? Ideally, an application that serves as an SP, with authentication provided by the broker which is configured for my organization's Okta tenant and a customer's Entra tenant.
Flow:
A user (from either the Customer's Entra ID or my organization's Okta) tries to log into the App. The app sends them to the Identity Broker. The Broker then directs the user to their correct home system (Entra or Okta) to sign in. Once signed in, the home system tells the Broker the user is authenticated. The Broker then tells App the user is authenticated, and the App grants access.
Hi @KevinT.51061 (Customer) , Thank you for reaching out to the Okta Community!
As a high level discussion, you can implement multiple external IDPs including Entra and set up Okta as the IDP for the downstream app.
From there you can implement IDP routing rules to direct users to authenticate to Okta via the appropriate source, then to the intended app.
If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you.
Hope my answer helps!
--
Help others in the community by liking or hitting Select as Best if this response helped you.
Collect them all. Learn a new skill and earn a new Okta Learning badge.