SAML Single Sign-OnSAML Single Sign-On

_SvIncludePlusContent-Okta Configuration for User Sync

Configuration in the Okta Web Console

Login to your Okta organisation as a user with administrator privileges
Any type of administrator role is fine. If you limit this administrator role to manage only specific groups,
only users in those groups are synced. API tokens have the same permissions as the user who creates them,
and if the user permissions change, the API token permissions will also change.

Screenshot 2019-03-12 at 08.35.45.png

Hoover over Security and click on API.

2a.png

Click on Tokens.

2b.png

Click on Create Token.

3.png

Add a name for your token and click on Create Token:

4.png

Now the token value will be displayed. Copy it since it will be only displayed once.
Of course you can create new token.

5.png

Configuration in User Sync Configuration page

Navigate to the administration console for Jira, Confluence or Bitbucket. 

Confluence: search for USERS & SECURITY under which you'll find User Sync
Jira: navigate to the User management tab in which you'll find User Sync
Bitbucket: navigate to Administration/ Accounts you'll find User Sync listed here

Click on Add Connector and choose OKTA Connector.

6.png

Set a name, insert your Okta Domain without https:// and enter the token value from before for the API Token.

7.png

To schedule a periodic synchronization of your Okta directory with User Sync, click on Show Advanced Settings at the very bottom of the page.
Enable Scheduled Synchronization needs to be ticked, the default cron expression would then cause a sync every hour.

image2019-4-2_16-4-28.png