Okta

With this guide you will learn how to integrate GoodAccess with Okta SSO/SCIM.

This feature is available in the Premium plan and higher.

Remember to to GoodAccess. Users without them won't be able to log in.

Step 1 - Adding a new identity provider

Click + Add provider, enter the Provider name, choose your Identity Provider, and click Continue.

Click Create App Integration, select SAML 2.0, and click Next.

Give the application a name, and click Next.

Copy the details from GoodAccess - (2) GoodAccess links.

Return to GoodAccess, and click Continue.

Return to Okta, and click Next.

Choose one of the Feedback options, and click Finish.

In the application go to Sign On > SAML 2.0, and click More details.

Copy the details to GoodAccess - (3) Identity Provider links, and click Continue.

If you don't want to setup SCIM, skip the next step in GoodAccess, and click Submit to finish the configuration.

You have now successfully set up your Okta SSO with GoodAccess.

In the application, go to General > App Settings, and click Edit.

Select SCIM, and click Save.

Go to Provisioning > Integration, and click Edit.

Copy the URL and Token from GoodAccess - (4) User provisioning (SCIM).

SCIM connector base URL - URL
Unique identifier field for users - "email" (without quotes)
Supported provisioning actions
- Push New Users
- Push Profile Updates
- Push Groups
Authentication Mode - HTTP Header
Authorization - Token

Return to GoodAccess, and click Submit.

Return to Okta, and click Save.

Go to Provisioning > To App, and click Edit.

Enable:

Click Save to finish the configuration.

The whole provisioning process will take around 20 minutes to complete depending on the number of members and groups being added.

You have now successfully set up your Okta SCIM with GoodAccess.

In the application, go to Assigments, and click Assign > Assign to People/Groups.

Choose who should have access, and click Done.

Last updated 1 month ago