Configure OKTA SSO for

OKTA is an identity management service which eliminates username and password struggle. With your OKTA single sign-on you can access OKR software using your existing company credentials.

You must have OKTA admin access to perform the following steps:

Step 1

To enable OKTA single sign-on, you first need to add app in your OKTA application dashboard.

Navigate to your OKTA Admin account. Click on the Admin tab.


Step 2

Once you click on the Admin tab, you will be navigated to the Application dashboard. In the Applications page, from the left panel select Applications. Now select Browse App Catalog.


Search for the application.

Browse App

Click on Add button to add application.

Add App

Step 3

After adding the app, click on the Settings icon against the app and select the Assign users button. You will see the list of OKTA users of your organization. Make sure you add yourself and add users to whom you would like to provide SSO access to OKR software.


Once you click on Assign to users option, the status will be shown as Assigned against the name of the user.

Note: Once the Configuration steps are done, Admin should assign the required users to App to sync into (If the users are assigned already before configuration, they must be removed and should be Reassigned in this step).


Step 4

After assigning users to the application, click on the app.

click App

Now click on the Sign On tab, to navigate.

Sign On

Scroll down a bit and hit the View Setup Instructions button.

View Setup Instruction

Step 5

This will redirect you to the page called How to Configure SAML 2.0 for Scroll down, select and copy the issuer id as shown below:

OKTA Authorize

Step 6

Now in another tab, login to your account and navigate to Settings → Integrations → SAML SSO.

Hit the Authorize button below the OKTA logo. Paste the issuer id in the pop-up and then press Register.

Regiter OKTA

Step 7

Now go to your OKTA End-User Dashboard tab in your browser and click on MyApps. You will be able to see the app. Clicking on the app should take you to OKR software without asking your username and password.

My Apps

Configure OKTA User Provisioning for


The following provisioning features are supported:

  • Push New Users
    Users assigned to OKTA App will be created in User Management.
  • Push Profile Updates
    Updates made to the user’s profile through OKTA will be pushed to User Management.
  • Push User Deactivation
    Deactivating the user or disabling the user’s access to the application through OKTA will deactivate the user in User Management.
  • Reactivate Users
    User accounts can be reactivated in the application.
  • User Import
    Import users from to create new OKTA users.


You need Admin account access in to get API Key and SCIM Key to form the SCIM Bearer Token.

Configuration Steps

To install the application please refer to the above steps.


Step 1:

Select Email for the Application username format on the Sign On tab in the Installed application and Save.

Step 2:

In Provisioning Tab, Click the Edit button and Provide the Bearer token.

To generate the Bearer token go to Settings → Security → API Access and get the values of API Key and SCIM Key.

Form the Bearer Token in the following Format.


Step 3:

Click on “Test API Credentials” and Save the configuration.

The supported attributes are,

  • Username
  • Given name
  • Family name
  • Primary email
  • Primary email type

Troubleshooting and Tips

Please reach us at if you face any issues in configuring this Integration.

Disclaimer: This integration with Okta is currently under development and is not available to customers yet. Contact us to learn more.