Advanced Configuration for Okta UserSync Connector¶
| Configuration | Description |
|---|---|
| OMNI Configuration | OMNI Metadata Service configuration |
| Admin Rest API | Admin Rest API |
| Property List | Property Referrence for Okta |
Okta fields for UserSync on PrivaceraCloud¶
These are descriptions of fields for configuring PrivaceraCloud UserSync for Okta
Add Connector¶
| Field name | Description |
|---|---|
| Enable Connector | Enable or disable this connector. |
| Service Type | Okta |
| Name | Identifying name of this connector. |
Configure Connector¶
| Field name | Description | Tab in application set-up |
|---|---|---|
| Endpoint URL | Okta endpoint URL | Basic |
| Bearer Token | API token for auth to Okta API | |
| Group Only | Sync only users that are members of groups. Allowable values: true or false | Advanced |
| Attribute Only | Sync only the attributes of users already synced from other services. Allowable values: true or false | Advanced |
| Incremental | Enable incremental search. Syncing only changes since last search. Allowable values: true or false | Advanced |
| Search Deleted User | Enable detection of deleted users. Allowable values: true or false | Advanced |
| Search Deleted Group | Enable detection of deleted groups. Allowable values: true or false | Advanced |
| Search Deleted Cycles | Number of cycles to search for deleted users and groups. Default value is 6. | Advanced |
| Sync Interval | Interval in minutes to sync users. Default value is 60. | Advanced |
| Add Custom Properties | Custom properties to pass to the connector. | Advanced |
Configure Filters¶
| Field name | Description | Tab in application set-up |
|---|---|---|
| Include Users | List of users to include from sync results. If this list is defined, all users not on this list are ignored. | Basic |
| Exclude Users | List of users to ignore from sync results. | Basic |
| Filter Users by Status | List of users to manage with status as equal to STAGED, PROVISIONED,ACTIVE,RECOVERY,PASSWORD_EXPIRED,LOCKED_OUT,DEPROVISIONED . If this list is defined, all users not on this list are ignored. Example: eq;ACTIVE,STAGED | Basic |
| Filter Users by Login | List of users to manage with user login name. Format filterOperator;login,login2,login3 Supported values for filterOperator are 'sw' or 'eq'. If this list is defined, all users not on this list are ignored. Example: sw;mon,san | Basic |
| Filter Users by First Name | List of users to manage with user first name. Format filterOperator;firstName,firstName2,firstName3 Supported values for filterOperator are 'sw' or 'eq'. If this list is defined, all users not on this list are ignored. Example: sw;mon,san | Basic |
| Filter Users by Last Name | List of users to manage with user last name. Format filterOperator;lastName,lastName2,lastName3 Supported values for filterOperator are 'sw' or 'eq'. If this list is defined, all users not on this list are ignored. Example: sw;mon,san | Basic |
| Filter Users by Email | List of users to manage with user email. Format filterOperator;email,email2,email3 Supported values for filterOperator are 'sw' or 'eq'. If this list is defined, all users not on this list are ignored. Example: sw;mon,san | Basic |
| Include Groups | List of groups to include from sync results. If this list is defined, all groups not on this list are ignored. | Basic |
| Exclude Groups | List of groups to exclude from sync results. | Basic |
| Filter Groups by Type | List of groups to manage with group type. Format filterOperator;groupType,groupType2,groupType3 If this list is defined, all groups not on this list are ignored. Sample: eq;APP_GROUP,BUILT_IN,Okta_GROUP | Basic |
| Filter Groups by Name | List of groups to manage with group name. Format filterOperator;groupName,groupName2,groupName3 Supported values for filterOperator are 'sw' or 'eq'. If this list is defined, all groups not on this list are ignored. Example: sw;mon,san | Basic |
| Filter Groups by sAMAccountName | List of groups to manage with group sAMAccountName. Format filterOperator;sAMAccountName,sAMAccountName2,sAMAccountName3 Supported values for filterOperator are 'sw' or 'eq'. If this list is defined, all groups not on this list are ignored. Example: sw;mon,san | Basic |
| Filter Groups by Source ID | List of groups to manage with group source ID. Format filterOperator;sourceId,sourceId2,sourceId3 Supported values for filterOperator are 'sw' or 'eq'. If this list is defined, all groups not on this list are ignored. eq;0oa2v0el0gP90aqjJ0g7,0oa2v0el0gP90aqjJ0g8,0oa2v0el0gP90aqjJ0g0 | Basic |
Base Attributes¶
| Field name | Description | Tab in application set-up |
|---|---|---|
| Username | Attribute of a user’s username. Default: login. | Basic |
| First Name | Attribute of a user’s first name. Default: firstName. | Basic |
| Last Name | Attribute of a user’s last name. Default: lastName. | Basic |
| Attribute of a user’s email. Default: email. | Basic | |
| Group Name | Attribute of a group’s name. Default: name. | Basic |
| Extract From Email | Extract the attribute from an email address. Example: username@domain.com extracts username. Default: false. | Advanced |
| Prefix | Prefix to prepend to the attribute value. No default. | Advanced |
| Postfix | Postfix to append to the attribute value. No default. | Advanced |
| To Lowercase | Convert the attribute value to lowercase. Default: false. | Advanced |
| To Uppercase | Convert the attribute value to uppercase. Default: false. | Advanced |
| Regex | Apply regex to attribute value. No default. | Advanced |
Custom User Attributes¶
| Field name | Description | Tab in application set-up |
|---|---|---|
| Attribute Name | Attribute key to sync with user. | Basic |
Custom Group Attributes¶
| Field name | Description | Tab in application set-up |
|---|---|---|
| Attribute Name | Attribute key to sync with group. | Basic |
OMNI for UserSync on PrivaceraCloud¶
To enable provisioning of user and group information into OMNI for UserSync in PrivaceraCloud, first ensure that your account is OMNI enabled and provisioned.
In UserSync Configuration, Configure Connector, Advanced tab add the following custom property:
| Text Only | |
|---|---|
- Prev topic: Setup