We are looking into methods on how to integrate icinga2 with Okta; possibilities found so far:
Configuring authentication as LDAP: https://www.okta.com/blog/2018/09/move-ldap-authentication-to-the-cloud-with-oktas-ldap-interface/
Configuring authentication as external, and install a proxy: https://stackoverflow.com/questions/50831044/azuread-authentication-to-icingaweb2
we use Okta as an authentication server for single-sign on, every application we have is connected with Okta.
Okta has an API feature where it provides operations to manage users in the organization. As for integration, Okta can be implemented with oauth2.0 as shown here: https://developer.okta.com/authentication-guide/implementing-authentication/
My question is, what is the best option to integrate icingaweb with Okta? should I setup icinga for basic authentication (external), and create a proxy to direct traffic to Okta, or should I go for a more secure option such as LDAP or Active Directory?
Can you please someone advise on this?