Authentication Profile with Single Signon

We have a requirement to set up authentication in Pega to access Rest services that use the Authorization Code grant type. A further requirement is for this to use single signon (the client is using Okta for their SSO).

The Pega Authentication Profile for an authorization code grant type works well for the connection, but we’re trying to find a way to eliminate the need to manually connect (using the Connected Apps landing page or widget).

There’s an SSO option when setting up this type of authentication profile for Box, but that option doesn’t seem to be available anywhere else.

Has anyone came across this issue before?

@EdF85340

To set up authentication in Pega for accessing REST services using the Authorization Code grant type with SSO (Okta) you can configure an OAuth 2.0 authentication profile. While the SSO option is explicitly mentioned for Box you can still achieve SSO integration with Okta by configuring the OAuth 2.0 client registration and using the JWT bearer grant type. This involves setting up the JWT assertion section to use the token from the active SSO session. This approach should help eliminate the need for manual connection via the Connected Apps landing page or widget.

This is a GenAI-powered tool. All generated answers require validation against the provided references.

Configuring an OAuth 2.0 authentication profile

Authenticating requests in services