If you or your organization have enabled RealVNC Connect's Account SSO and linked your RealVNC Connect Team to Okta, you will no longer be able to invite people within the RealVNC Connect Portal. Instead, people are added to the RealVNC app in Okta and then managed in the RealVNC Connect Portal. To discuss enabling SSO for your subscription, please contact us.
Managers and Admins can use the RealVNC Connect Portal to view, add and remove members of the team as well as assign roles.
Before a user can be added to your RealVNC Connect Team, they must have been assigned to the RealVNC Connect app in Okta.
Okta App Integration Information
Supported Features
Service Provider (SP)-Initiated Authentication (SSO) Flow - This authentication flow occurs when the user attempts to log in to the application from RealVNC Viewer or the RealVNC Connect Portal.
Requirements
In order to proceed with configuring login with SSO through Okta, you must:
- Have access to an Okta tenant
- Be an Okta administrator to that tenant
- Have a RealVNC Connect subscription that includes Account SSO (see the top of this page)
We do not currently offer self-service linking of Okta to your RealVNC Connect Team. To link your RealVNC Connect Team to Okta, please contact our Support team by submitting a ticket here.
Creating an App Integration for RealVNC Connect
This step is only required if you have not already created an app for RealVNC Connect in your Okta admin console.
- Navigate to your Okta admin console, and sign in with an account that has appropriate permissions to add applications from the Okta App Catalog
- Expand the Applications section on the left menu, then click the Applications menu item
- Click the Create App Integration button
- Choose the OIDC - OpenID Connect option, then choose Native Application and click Next
- Complete the app integration settings as below:
- Enter the name of the integration to be shown to users, for example: RealVNC Connect
- Optionally, upload a logo to use for the integration. You can use the logo file, below.
- Under Core grants, enable the Refresh Token option
- Under Advanced, Other grants, enabled Implicit (hybrid)
- Add the 3 URIs below to Sign-in redirect URIs:
https://manage.realvnc.com/sso_okta/callback https://manage.realvnc.com/sso_client_callback?sso_uri=com.realvnc.vncviewer.sso://localhost/login com.realvnc.vncviewer.sso://localhost/login
- Add the URI below to Sign-out redirect URIs:
https://www.realvnc.com/?signed_out=true
- Under Assignments, choose Skip group assignment for now
Assignments will be configured as shown below in the Managing user assignments section
- Click Save
- On the application summary screen, make a note of the Client ID.
- Update your ticket with the RealVNC Support team with your Client ID and Okta tenant URL, e.g. companyname.okta.com
- The RealVNC Support team will create the link with your RealVNC Connect Team and send you a confirmation message once complete.
Managing user assignments
Adding users to the RealVNC App in Okta
- Navigate to your Okta admin console, and sign in with an account that has appropriate permissions to assign users to applications
- Expand the Applications section on the left menu, then click the Applications menu item
- Click the Assign Users to App button
- Select the RealVNC app on the left side of the screen. On the right side, select the Users and/or Groups that you would like to be granted access to RealVNC Connect.
Click the Next button when you are done.
- Review the assignments and resolve any issues, if applicable, then click the Confirm Assignments button
- Okta will assign the RealVNC app to the selected users/groups and take you back to the Applications page when complete
The user/groups that have been assigned to the RealVNC app will now be able to sign in to RealVNC Connect using their Okta account but will not have access to your RealVNC Connect Team until they have been added using the RealVNC Connect Portal.
Adding Okta users to your Team in the RealVNC Connect Portal
If you are setting up Okta for your RealVNC Connect Team for the first time, or have multiple Okta users to add, please contact our Support team by submitting a ticket here.
- Sign in to the RealVNC Connect Portal with an account that holds the Manager, Admin or Owner role
- Click People on the left menu
- Click the Add from organization button
- On the popup that appears, choose one of the two options.
Choose Add by email if the user you want to add to the team has signed in to RealVNC Connect with Okta previously. Continue to step 5.
Choose Add by ID if the user you want to add has not signed in to RealVNC Connect with Okta previously. Skip to step 6.
- If you want to add by email, click Add a team member and begin typing the email address of the user you want to add. Click on the matching result from the autocomplete. Repeat this for each user you want to add and click the Add button when you are done.
- If you want to add by id, you will need the email address and user ID of the user you want to add.
To find the Okta user id, you need to sign in to your Okta admin console and either:
- In Directory:
- Find the user you want to add and click on their name
- Copy the User Id from the end of the URL in your web browser's address bar
- In Reports:
- Run the User Accounts report under Entitlements and Access
- Run the User Accounts report under Entitlements and Access
- In Directory:
Managing roles in your Team
- Sign in to the RealVNC Connect Portal with an account that holds the Manager, Admin or Owner role
- Click People on the left menu
- Change the Role dropdown next to the user that you want to change the role for
Removing users from your Team
- Sign in to the RealVNC Connect Portal with an account that holds the Manager, Admin or Owner role
- Click People on the left menu
- Click the 3 dots button to the right of the user you want to remove, then click Remove
Comments
Article is closed for comments.