SSO Best Practice (SaaS , PaaS , OKTA)
We have three systems. Oracle SaaS , PaaS (OIC) and OKTA.
We were looking for best design to setup federation between all these three,
As i understand OKTA will be Identity Provider.
But a bit confused on the flow, The basic requirements is that VBCS applications should be able to use Cloud Auth and will be embedded into SaaS.
- SaaS should use OKTA as IDP or IDCS of PaaS as IDP ?
- Service Provider is SaaS or IDCS ?
- How will the Sync work ?
- Will there be any additional cost because of this 3 way setup?
This may be relevant on an IDCS forum but since VBCS Cloud Auth is an important requirement i asked it here.