Okta Integration and SSO for Zero Trust Secure Access

Integrate with Okta to authenticate access attempts and take action on risky account activity.

Important:

You cannot configure single sign-on (SSO) from multiple IAMs. Ensure that you configure the necessary permissions and SSO on the IAM you want to use for Private Access and Internet Access authentication.

Operations Dashboard and Zero Trust Secure Access both require the data upload permission to ensure certain features function properly. Turning off the data upload may prevent secure access policy enforcement and risk analysis.

Integration requires an Okta user account with minimum administrator privileges based on the permission you want to enable.

Permission

Administrator Privileges

Data upload permission

  • API Access Management Admin

  • Mobile Admin

  • Read-Only Admin

  • App Admin

  • Org Admin

  • Super Admin

Policy enforcement permission

  • Group Admin

  • Org Admin

  • Super Admin

  1. Go to Zero Trust Secure Access > Secure Access Configuration > Identity and Access Management.
  2. Click Okta.
  3. In the IAM System Settings panel, provide the following information obtained from your Okta system:
    • Okta URL domain

    • Data upload permission API token

    • Policy enforcement permission API token (if you want to take action on risky user accounts)

    To find out how to obtain the necessary Okta information, click the Get Okta token link.

  4. Click Save.
  5. Configure your Okta SSO settings.