NOTE: Before adding/assigning Users in Okta, please make sure that the users with the same email address exist in your SV company as either Admins/HRs

1. Open the SpringVerify app in Okta

1. Go to the Assignments tab

1. Click Assign → Assign to People / Groups

1. Add the users or groups who should be able to log in via SSO
   

• Once everything is saved, open the SpringVerify login page
  
• Click Sign in with Custom SSO
  
• Enter your organisation's email
  
• You will be redirected to Okta for authentication
  
• After login, you will be redirected back to SpringVerify
  

• Entry Point URL matches the Okta SSO URL
  
• Certificate matches exactly
  
• User is assigned in Okta
  

How to Set Up Okta OIDC SSO for SpringVerify

SpringVerify supports Single Sign On (SSO) using OIDC (OpenID Connect).
This guide explains how to integrate Okta with SpringVerify using OIDC, using the exact fields you will see inside SpringVerify.

Before You Begin

You will need:

• Admin access to your Okta tenant
  
• Admin access to SpringVerify Company Admin
  
• The Metadata URL, Client ID, and Client Secret from Okta
  

1. Log in to your Okta Admin Console
2. Navigate to Applications → Applications
3. Click Create App Integration
4. Choose: Sign-in method: OIDC – OpenID Connect
5. Application type: Web Application
6. Click Next
   

Step 2: Configure Your OIDC App

1. Inside the Okta app settings: Redirect URL
2. In SpringVerify, you do not enter the redirect URI manually —
   Instead, SpringVerify reads it automatically from Okta’s Metadata URL.
3. So in Okta, add: Sign-in redirect URIs: https://api-sa.in.springverify.com/auth/sso-callback
4. Grant Types:
   ✔ Authorization Code (required) Leave others as the default unless your security team prefers otherwise
5. Assignments: ✔ Skip group assignment for now( if not planned to assign a group yet)
   
6. Click Save.
   

After creating the application, copy the following:

1. Metadata / Discovery URL - This is also known as the OIDC Discovery Endpoint.
2. It will look like: https://yourcompany.okta.com/oauth2/default/.well-known/openid-configuration
   Example: https://integrator-3149395.okta.com/oauth2/default/.well-known/openid-configuration
   
   You can find your company name in the highlighted areas of your Okta account
   
       
   
   

Step 4: Enter OIDC Details into SpringVerify

• Login to SpringVerify Portal → Settings → Security Settings
  Enable Custom SSO
• Choose OIDC (OpenID Connect)

You will see fields exactly like this:

Fill them as follows:

• Metadata URL

Paste the Okta OIDC Discovery URL
Example:

https://yourcompany.okta.com/oauth2/default/.well-known/openid-configuration

1. Client ID - Paste the Client ID from Okta.
   
   
   
2. Client Secret - Paste the Client Secret from Okta.
   
   
3. Click Save. SpringVerify will automatically pull:
   
   • Issuer
     
   • Authorization endpoint
     
   • Token endpoint
     
   • Userinfo endpoint
     
     
   from the provided Metadata URL.

Step 5: Assign Users in Okta

1. Go to the SpringVerify OIDC app
   
2. Open Assignments
   
3. Click Assign → Assign to People / Assign to Groups
   
4. Add your HR team or relevant users

NOTE: Before adding/assigning Users in Okta, please make sure that the users with the same email address exist in your SV company as either Admins/HRs

Step 6: Test the SSO Login

1. Open the SpringVerify login page
2. Click Sign in with Custom SSO
3. Enter your work email
4. You should be redirected to Okta to authenticate
5. After login, you are redirected back to SpringVerify

If the login does not work:

1. Ensure the Metadata URL is valid
   
2. Confirm Client ID and Client Secret values
3. Verify assigned users in Okta
   
4. Confirm your redirect URL is added in Okta

You're All Set

Your SpringVerify workspace is now connected to Okta using OIDC.
Your employees can securely log in using their organisation credentials.

If you need help during setup, the SpringVerify team is happy to assist. Please contact - cs@springverify.com or +91 8047190155