Configure provisioning for Okta with Zoho Directory

User provisioning with Okta enables you to provision and deprovision users in Okta from the Zoho Directory Admin Panel, enabling you to use Zoho Directory as a single source of truth. To get the most out of this integration, you can also set up single sign-on (SSO). SSO allows your organization's users to easily access Okta without having to sign in to it separately.

Prerequisites

In Zoho Directory

Roles that can perform this action:

Organization Owner
Organization Admin

Permissions required to perform this action:

View apps
Assign apps
Import users

In Okta

A valid account
Super admin or App admin role

In Okta: Install the app and generate Auth tokens

Sign in to Okta, then click Admin in the top bar.
Click Applications in the left panel, then click Applications in the drop-down menu.
Click Browse App Catalog, then search for and open Zoho Directory.
Click Add Integration.
Verify the displayed details and click Done.
Go to General, then copy the Client ID and Client Secret.

In Zoho Directory: Set up provisioning

Sign in to Zoho Directory, then click Admin Panel in the left menu.
Go to Applications, then click Okta.
Go to Provisioning, then click Configure.
Enter the Client ID and Client Secret copied from Okta under OAuth Consumer Key and OAuth Consumer Secret respectively.
Click Authorize. You will be taken to Okta, asking your consent for Zoho Directory to manage account information.
Click Allow.
Select the fields to sync with Okta, and map a relevant Zoho Directory field with them.

If you'd like to have a constant value set in Okta for any field, hover over the field, click Edit, enter the value in the Hardcoded Value field, and click OK.
Click Save and Next.
Under Settings, select the profile actions in Zoho Directory that must reflect in Okta.

Create Users: Users assigned to Okta in Zoho Directory will be added as new users in Okta.
Update User profile: For users who already have an account in Okta, changes made to the mapped fields in the user profile in Zoho Directory will reflect in Okta.
Delete Users: Unassigning a user from Okta in Zoho Directory will reflect in deleting the user from Okta.
Activate and deactivate Users: Activating or deactivating users in Zoho Directory will activate or deactivate them in Okta. Additionally, users who have an account in Okta will be activated when they are assigned to the app in Zoho Directory.

Click Save.
If you wish to import users from Okta to Zoho Directory, click Import. It is advisable to import users during initial setup or when activating the app after a while. A list of user profiles that can be imported will be displayed based on the following filters:

New Users: Users in Okta who do not have an account in Zoho Directory. Users you select here will be added to Zoho Directory and Okta will be assigned to them.
Update User: Users in Okta who are already present in Zoho Directory. Choose a source profile, and the field values of user profiles you select here will be overwritten with that of the source profile.
Users to Activate: Users in Okta who are present in Zoho Directory but are inactive. Users you select here will be activated and Okta will be assigned to them.
Users to Deactivate: Inactive users in Okta who are present in Zoho Directory but are active. These users will be deactivated in Zoho Directory.

Click Confirm Assignment.
Click Done.

Assign Roles

When assigning users to Okta, you can also select their role in Okta. To do this,

Sign in to Zoho Directory, then click Admin panel in the left menu.
Go to Applications, then click Okta.
Click Assign users.
Under Choose Users, select the user to assign.
Under Role, select the role to assign to the selected user in Okta. You can select any predefined role in Okta.

Custom roles created in Okta cannot be assigned to users from Zoho Directory interface.