I’m doing some work for a customer who has a SaaS product. It’s a single deployment ASP.Net website where tenants are separated on the database layer.
One of their customers already use Okta SSO and would like us to integrate sign on for them so that they can sign in through okta, no problem there, I’ve had a look at the sample apps and this should be easy for us to implement.
However we would like to be able to offer okta sign on to more than just this single tenant, therefore there would be multiple okta domains.
At the point of login we do not know which tenant the user belongs to.
Does any one have any thoughts about how we might best do this, could we perhaps create a single domain for our app to connect to and federate to multiple different Okta domains?
Thanks in advance