Setting up Okta to work with Tailscale
Unlike GSuite and Office365 authentication, which can be activated automatically during a Tailscale trial, you will have to contact us to enable your domain for Okta authentication. We are actively working to make this process more automated. In the meantime, here are the steps you’ll need to follow.
In the Okta admin panel, go to the Applications tab.
- Click Create New App
- Platform: Web
- Signon method: OpenID Connect
On the Create OpenID Connection Integration page, enter:
- Application Name: Tailscale
- Login redirect URIs: https://login.tailscale.com/a/oauth_response
In General Settings:
- Click Edit
Under Allowed grant types / Client acting on behalf of a user:
- Enable Refresh Token
When done, fill out the OpenID Connect SSO Provider Request form.
After you send us your Okta app information, note that it may take up to two business days to activate your domain.