By connecting your organization’s Okta account to Nudge Security with a read-only and application administrator API token, you can monitor the SSO enrollment status of your SaaS estate, easily track progress against your organization’s SSO goals, and automatically initiate SSO enrollment workflows directly in Nudge Security.
What you’ll need
You’ll need to create a token in your Okta tenant with an account that uses the Okta:
Read-only administrator account role
Application administrator account role
To ensure Nudge Security functions properly, the roles (read-only administrator and application administrator) you configure must be granted permission to access the following endpoints:
/api/v1/apps
/api/v1/apps/{application_id}/groups
/api/v1/apps/{application_id}/users
/api/v1/org/contacts/technical
/api/v1/users/
/api/v1/groups
/api/v1/groups/{group_id}/users
Configuration steps
First, create a read-only token in your organization’s Okta tenant. Log into your Okta admin console with either a read-only admin or custom admin account. Navigate to Security > API.
2. Navigate to Tokens. Click Create token.
3. Copy the token you just created.
4. In Nudge Security, navigate to Things to do > Onboard apps to Okta. Click start or continue on the playbook.
5. Enter the Okta API and subdomain and click Test connection.
6. Verify the connection status. If Verified, you have successfully connected Okta to Nudge Security. You can continue to the next step in the playbook or exit the playbook.
Troubleshooting
If you run into any issues, please reach out to Nudge Security for assistance. You can use the chat icon directly in the product to chat with us or email help@nudgesecurity.com.