Salto’s Okta adapter allows you to:
Fetch and deploy common Okta configuration data, e.g., applications, policies, rules.
Deploy major configuration changes from an Okta Sandbox to your production environment.
Compare environments.
Audit / document configuration changes such as policy modifications.
Monitor specific changes of interest, e.g., schemas.
Connect your Okta Instance
! warning: Please make sure to create API token with super administrator permissions
Obtain an API Token using user with super administrator ****privileges from https://yourOktaSubdomain.okta.com/admin/access/api/tokens
Add an Okta service to a Salto environment, by selecting the environment --> "Settings" --> “Connect an application” —> select “Okta”
In application credentials screen, provide:
Your Okta Base URL (remove -admin part), e.g. https://yourOktaSubdomain.okta.com/)
The token you created in step 1
Supported Types
See the Supported Okta Types page.
Known Limitations
Support of Okta’s classic engine is available, yet limited and active work in progress. If you run into any issues, please reach out to us @ support@salto.io.
Application integration limitations:
Any app configuration changes done using Salto change only the Okta side. Additional setup might be needed in the integrated app.
Sharing application key credentials across multiple apps is not supported yet (Okta’s doc)
Okta Workflows are not supported.
FAQs
Does Salto manage secrets?
No, Salto doesn’t manage or store any secrets
Does Salto manage users or admins?
Salto doesn’t manage users, user-roles assignments or user-group assignments.
Please note that most Okta customers do not manage users directly in Okta, but rather sync them via Active directory, or another system, to Okta.