Okta Directory Sync Integration

New
  • Updated on Oct 24, 2025
  • Published on Oct 24, 2025
  • 1 minute(s) read
  • corey smith
 Prev Next

Overview

This article provides step-by-step instructions for integrating Okta with Opensense. This API-level integration allows Opensense read access to users and groups via the Okta API. The sync is automated to ensure your organization's directory data remains up to date.

Note: API Services - Interact with Okta APIs using scoped OAuth 2.0 access tokens for machine-to-machine authenticaiton.

Requirements

To complete the directory sync integration, the Okta administrator must create a custom app in Okta and share the following with the Opensense team:

  1. Okta Directory API Endpoint – URL for accessing Okta directory data.

  2. Okta Directory API Token – Token to authenticate requests to the Okta API.

Integration Steps

Step 1: Create a Custom App in Okta

  1. Log in to the Okta Admin Console

  2. Navigate to Applications → Applications, and click Create App Integration

  3. Choose Custom App

  4. Under Create a new app integration, select API Services

    • Set appropriate permissions to allow reading of user and group data

    • Ensure scopes cover:

      • okta.users.read

      • okta.groups.read

    • Enable access via API token        

  5. Go to Security → API → Tokens

    1. Generate an API Token

See the Official Okta documentation for additional guidance here.

Step 2: Provide Credentials to Opensense

Send the credentials securely to the Opensense implementation team:

  • API Endpoint: (e.g. https://opensense.okta.com )

  • API Token: Secure and confidential – required by Opensense

Step 3: Enable Automated Syncs

Once configured, Opensense will automatically sync data from Okta daily

Step 4: (Optional) Support for Multiple Directories

If using other directories such as AzureAD alongside Okta:

  • Contact the Opensense implementation team for multi-directory setup

  • Ensure rules for directory priority and conflict resolution are in place

Troubleshooting

Issue

Solution

Invalid Token

Confirm the token is valid and not expired. Generate a new token if needed.

Access Denied

Ensure your custom app includes permissions to read users and groups.

Sync Delays

Check the scheduled sync time or initiate a manual sync if supported.

Additional Resources

Opensense Support

For further assistance, contact Opensense Support:

  • Email: help@opensense.com

  • Knowledge Base: help.opensense.com