# Textual configuration (Textual Cloud)

{% hint style="info" %}
**Required global permission:** Manage users and groups
{% endhint %}

On Textual Cloud, after you [complete the configuration in Okta](https://docs.tonic.ai/textual/textual-install-administer/user-access-textual/textual-sso/textual-sso-okta/okta-configuration), you configure the Textual connection to Okta from the **Single Sign-On** tab on the **Permission Settings** page.

1. To enable Okta SSO, check the **Enable Okta SSO** checkbox.
2. In the **SSO Client ID** field, enter the client identifier of the application.
3. In the **SSO Domain** field, enter the Okta domain.
4. If you use a third-party provider, then in the **Identity Provider ID** field, provide the provider identifier.\
   \
   If you do not use a third-party provider, then you can skip this field.
5.  If you created a custom authorization server, then in the **Authorization Server** field, provide the server identifier.\
   \
   If you did not create a custom authorization server, then you can skip this field.
6. To require your organization users to use Okta SSO to log in to Textual, check the **Require SSO for login** checkbox.