Okta provisioning configuration (create app integration in Okta) This guide is for Okta user provisioning setup with SCIM. Before starting this setup we suggest you to set up the SSO connection with Okta. To set NordPass provisioning with Okta you need to have access to the Enterprise NordPass Admin Panel and Admin rights in the Okta account. Go to Okta and log in. Go to Applications → Applications and click on Create App Integration. Check SWA - Secure Web Authentication and select Next. Enter the App name; we suggest using ‘NordPass Provisioning’. Provide the App’s login page URL, this URL is not relevant for the integration because for the Single Sign-On you still need to set up the NordPass integration from the Okta Catalog. After these parameters are provided seleect Finish. After these steps application will be created and you will need to set up the provisioning part. Go to the NordPass Admin Panel. Open Settings → User & Group Provisioning → Okta. In the opened window you will see the credentials needed for the provisioning setup. Save this credentials for the future, you will need them while setting up provisioning in Okta. Go back to Okta. Go to Applications → Applications and select created app. Open the General tab, click on Edit, and select Enable SCIM Provisioning. Save the changes. After changes are saved Provisioning tab will appear in the application setting list. Click on it. Go to Provisioning tab → Integration to set up SCIM Connection. In the SCIM connection base URL enter the Base URL, you got in the NordPass Admin Panel. For the Unique identifier field for users enter email.For Authentication Mode select HTTP Header.The Bearer is the Secret token you got in the NordPass Admin Panel.For Supported provisioning actions select: Push New Users Push Profile Updates Push Groups All these fields should be fields and after it is done click on the Test Connection Configuration. You should receive a Connector configured successfully message. In the application side menu choose To App and in the opened tab click on Edit. Mark these checkboxes on the screen and click Save: Create Users Update User Attributes Deactivate Users Congratulations, your provisioning application is set! User provisioning is enabled and you can assign users to the application in Okta. To provision groups from Okta, group provisioning should be enabled in NordPass. To do it you need to deploy the Encryption service. Encryption service provides the possibility for NordPass to keep the zero-knowledge architecture. Encryption service deployment guides: Group provisioning setup with Azure Group provisioning setup with AWS Group provisioning setup with Docker Was this article helpful? Yes No