All Collections
Salto for Okta
Salto for Okta - Overview
Salto for Okta - Overview
Support avatar
Written by Support
Updated over a week ago

Salto’s Okta adapter allows you to:

  • Fetch and deploy common Okta configuration data, e.g., applications, policies, rules.

  • Deploy major configuration changes from an Okta Sandbox to your production environment.

  • Compare environments.

  • Audit / document configuration changes such as policy modifications.

  • Monitor specific changes of interest, e.g., schemas.

Connect your Okta Instance

! warning: Please make sure to create API token with super administrator permissions

  1. Obtain an API Token using user with super administrator ****privileges from https://yourOktaSubdomain.okta.com/admin/access/api/tokens

  2. Add an Okta service to a Salto environment, by selecting the environment --> "Settings" --> “Connect an application” —> select “Okta”

  3. In application credentials screen, provide:

    1. Your Okta Base URL (remove -admin part), e.g. https://yourOktaSubdomain.okta.com/)

    2. The token you created in step 1

Supported Types

See the Supported Okta Types page.

Known Limitations

  1. Support of Okta’s classic engine is available, yet limited and active work in progress. If you run into any issues, please reach out to us @ support@salto.io.

  2. Application integration limitations:

    1. Any app configuration changes done using Salto change only the Okta side. Additional setup might be needed in the integrated app.

    2. Sharing application key credentials across multiple apps is not supported yet (Okta’s doc)

  3. Okta Workflows are not supported.

FAQs

Does Salto manage secrets?

No, Salto doesn’t manage or store any secrets

Does Salto manage users or admins?

Salto doesn’t manage users, user-roles assignments or user-group assignments.


Please note that most Okta customers do not manage users directly in Okta, but rather sync them via Active directory, or another system, to Okta.

Did this answer your question?