Add Okta to Zoho Directory
Prerequisites:
Roles required in Zoho Directory to perform this action:
Organization Owner
Organization Admin
Custom Authentication with Okta
Roles required in Okta:
Admin
Plan required in Zoho Directory:
Free plan
Professional plan (if you want to add multiple directories)
Add Okta to Zoho Directory
- Log in to your Okta organization.
- In the left panel, click Applications, then click Applications.
- Click Create App Integration.
- In the page that opens, select OIDC - OpenID Connect as the Sign-in method and Web Application as the Application type.
- Click Next.
- In the form that opens, enter the App integration name; select Client Credentials and Refresh Tokens as the Grant Type; then enter the Sign-in redirect URIs based on your DC from the table given below:DCSign-in redirect URIJapanUSEuropeChinaIndiaAustraliaUKCanadaSaudi Arabia
- Under Controlled access, select Skip group assignment for now and click Save.
- Under Assignments, click Assign, then click Assign to People.
- Click Assign against your profile, then click Save and go back, and then click Done.
- Under Okta API Scopes, click Grant against the okta.users.read scope.
- Under General, copy the Client ID and the Client Secret to your clipboard.
- Open your profile from the top-right corner, and copy your domain name to your clipboard.
- Sign in to Zoho Directory, then click Admin Panel in the left menu.
- Click Directory Stores, then click Add Directory.
- Click Add against Okta.
- Under API INTEGRATION, enter the Domain Name, Client ID, and Client Secret copied from your Okta organization; and click Next.
- In the next window, enter the credentials of your Okta administrator account and authenticate the integration.
- Map the fields available in Zoho Directory to the fields available in Okta. If you'd like all users synced from Okta to have the same value for a field, map that field with a hard-coded value. For example, if you want the value for the field 'Country' to be 'India', then you can type India as a value for the Hard-coded Value.
To map a hard-coded value with a field: - Click Edit next to a field.
- Enter the value you need in the Hard-coded Value field.
- Click Ok.
- Click Next.
- Under SETTINGS, next to Password Notification, choose how you want your users to receive their One-Time Password. You can either send the OTP to the user, to the administrator, or notify no one.
Password Notification setting is only applicable to users whose email address has a verified domain name. - Once you're finished, click Save and Next.
- Choose how the change in user status in Okta should reflect in Zoho Directory.
- Click Save and Close.
- Choose how you want to sync users from Okta based on the criteria applied in Zoho Directory. You can either choose to sync specific users based on a set of criteria or all users. You can use custom attributes to set criteria. You can also set multiple criteria based on your needs.
- To set criteria, select a criteria from the options, choose a relationship, and enter the criteria's value as needed. While adding more than one criteria, you can also choose to enter it manually. Click Edit, enter your condition(whether OR or AND) and click Save and Next.
- Enable Schedule Sync to import users from Okta automatically at a specified time interval. Choose how often the sync should run on daily, weekly, or monthly, and set the preferred time in the Sync Interval.
- Once done, click Save and Close.
- Under IMPORT USERS, all users (except deleted users) will be fetched and shown depending on the chosen criteria. Select the required and click Import. The import summary will be displayed upon completion. Click Finish.If you select more than 200 users, users will be staged, and it might take time to list the users. Once finished, you can either view it or clear it for re-import.
In Zoho Directory:
Sign in to Zoho Directory, then click Admin Panel in the left menu.
Go to Directory Stores, then click Add Directory.
Click Add next to Okta.
Under API INTEGRATION, note down the Sync endpoint and SCIM token. Later, you'll need to provide this information in Okta to enable sync.
Click Next.
Map the fields available in Zoho Directory to the fields available in Okta. If you'd like all users synced from Okta to have the same value for a field, map that field with a Hard-coded value. For example, if you want the value for the field 'Country' to be 'India', then you can type India as a value for the Hard-coded Value.
To map a hard-coded value with a field:
Click Edit next to a field.
Enter the value you need in the Hard-coded Value field.
Click Ok.
Click Next.
- Under SETTINGS, next to Password Notification, choose how you want your users to receive their One Time Password. You can either send the OTP to: the user, or to the administrator or notify no one.
Password Notification setting is only applicable to users whose email address has a verified domain name.
Once you're finished, click Save and Next.
Choose how the change in user status in Okta should reflect in Zoho Directory.
Click Save and Next.
Choose how you want to sync users from Okta based on the criteria applied in Zoho Directory. You can either choose to sync users for a few users matching the criteria or all users. You can use custom attributes to set criteria. You can also set multiple criteria based on your needs.
To set criteria, select a criteria from the options, choose a relationship, and enter the criteria's value as needed.
While adding more than one criteria, you can also choose to enter it manually. Click Edit, enter your condition (whether OR or AND), and click Save.
14. Once done, click Save and Close.
In Okta:
Log in to your Okta organization.
Select Applications in the left sidebar menu.
Click Create App Integration. Select SAML 2.0, then click Next.
Enter the required details in the General Settings tab, then click Next.
Enter the Sign-in URL from Custom Authentication tab in Zoho Directory in the Single sign-on URL field and for Audience URI in Okta enter zoho.com. Configure Custom Authentication with Okta in Zoho Directory's admin panel, if you haven't configured before. Once you're finished, click Next.
Click I'm an Okta customer adding an internal app.
Go to General tab, click Edit under App Settings, and change Provisioning option from None to SCIM. Once you're finished, click Save.
Go to Provisioning tab, then click Edit.
Enter the Sync endpoint copied from Zoho Directory in SCIM connector base URL. Enter email in the Unique identifier field for users field, and select the Push New Users option (as well as Import New Users and Profile Updates, and Push Profile Updates, optionally) in Supported provisioning actions field.
Note: Push Groups and Import Groups options cannot be selected for a custom app integration.
Select HTTP Header from the dropdown menu in Authentication Mode field.
Enter the SCIM token copied from Zoho Directory in the Token field next to Authorization. Click Test Connector Configuration, then click Save.
Click the Provisioning tab, select To App in the SETTINGS list, click Edit, then tick Enable checkbox next to the options you would like to enable, then click Save.
For Import, Select To Okta in the SETTINGS list, and in the User Creation & Mapping area, click Edit. Select Okta username format matches and click Save.
Click the Import tab and click Import Now. Select Incremental Import and click Import.
For user assignment, avigate to Assignments tab, click Assign, then select Assign to People. Select the users to assign. Click Assign, click Save and Go Back, and click Done.
Note: The assignment will be synced immediately to Zoho Directory.
Note: To check if the user you've assigned was synced properly, go back to the Zoho Directory Admin Panel, click Directory Stores in the left menu, click Okta, and check the Members tab.
the attribute mappings synced by Okta, navigate to Provisioning tab and scroll down.
To add a custom mapping, click Go to Profile Editor, select Custom from Filters column, and then click Add Attribute. Enter the required details, and click Save.
Note: Variable name for every custom mapping has to be unique, whereas External namespace can be the same.
To add a custom attribute, select Directory in the left sidebar menu, then click Profile Editor. Select User (default) from the options, then select Custom from Filters column, and click Add Attribute. Enter the required details, and click Save.
Access your files securely from anywhere
Zoho CRM Training Programs
Learn how to use the best tools for sales force automation and better customer engagement from Zoho's implementation specialists.
Zoho DataPrep Personalized Demo
If you'd like a personalized walk-through of our data preparation tool, please request a demo and we'll be happy to show you how to get the best out of Zoho DataPrep.
- Zoho Workerly Home
- Forums
- Connect With Us:
- Zoho Recruit Home
- Forums
- Connect With Us:
Create. Review. Publish.
You are currently viewing the help pages of Qntrl’s earlier version. Click here to view our latest version—Qntrl 3.0's help articles.
Zoho Sheet Resources
Zoho Forms Resources
Zoho Sign Resources
Sign, Paperless!
Zoho TeamInbox Resources
Design. Discuss. Deliver.
Related Articles
Add JumpCloud to Zoho Directory
Prerequisites: Roles required in Zoho Directory: Organization Owner Organization Admin Roles required in JumpCloud: Admin Plan required in Zoho Directory: Free plan Add JumpCloud to Zoho Directory Using SCIM Using API Using SCIM In Zoho Directory: ...Add greytHR to Zoho Directory
Prerequisites: Roles required in Zoho Directory to perform this action: Organization Owner Organization Admin Roles required in greytHR: Admin Plan dependency in Zoho Directory: Free plan In Zoho Directory: Sign in to Zoho Directory, then click Admin ...Add BambooHR to Zoho Directory
Prerequisites: Roles required in Zoho Directory to perform this action: Organization Owner Organization Admin Roles required in BambooHR: Admin Plan dependency in Zoho Directory: Free plan In BambooHR: Log in to your BambooHR account. Click the My ...Add OneLogin to Zoho Directory
Prerequisites Roles required in Zoho Directory to perform this action: Organization Owner Organization Admin Role required in OneLogin: Admin Plan required in Zoho Directory: Free plan Professional plan (if you want to add multiple directories) In ...Import users from Okta to Zoho Directory
If you are currently using Okta as your cloud directory service to store your organization data, you can easily import your users to Zoho Directory. For exporting users from Okta, Okta prescribes a Chrome browser extension called rockstar. Export ...