Okta Management Settings
Configure Okta management settings from the DuploCloud Portal
Okta is a cloud-based identity and access management platform that provides Single Sign-On (SSO), multi-factor authentication (MFA), and lifecycle management for users. DuploCloud supports Okta integration for authentication, authorization, and group-based access mapping.
This page describes the current, portal-based configuration for Okta. If you are migrating from legacy configuration files, DuploCloud automatically migrates existing settings to the portal. (merged from first page).
Initial setup may require coordination with the DuploCloud support team.
Configuring Okta Settings
Configure your Okta integration settings from directly within the DuploCloud Portal:
Log in to the DuploCloud Portal as an administrator.
Navigate to Administrator → System Settings.
Select the Okta Settings tab. The Okta Settings pane displays.
Okta Settings pane Configure the desired fields in the following sections:
User Source Settings
Enable Okta As User Source
Select this option to make Okta the primary source for user identities in DuploCloud.
DuploCloud Admin Group ID*
Enter the Okta Group ID that grants administrator access to users within DuploCloud. You can find the Okta Group ID by navigating to Directory → Groups in Okta, selecting the desired group, and copying the Group ID from the General tab.
DuploCloud ReadOnly Group ID
Specify the Okta Group ID for users who should have read-only access permissions. To find the DuploCloud ReadOnly Group ID, navigate to Directory → Groups in Okta, select the read-only group, and copy he Group ID from the General tab. This ID grants read-only access to users in DuploCloud.
DuploCloud Security Group ID
Provide the Okta Group ID assigned to security-focused roles or permissions in DuploCloud. To find the DuploCloud Security Group IP, navigate to Directory → Groups in Okta, select the security group, and copy the Group ID from the General tab.
DuploCloud Tenant Group Prefix
Specify the prefix used for Okta groups that map to DuploCloud tenants. For example, if your tenant groups are named tenant1-admin and tenant2-admin, the prefix would be tenant-.
DuploCloud Tenant ReadOnly Group Prefix
Specify the prefix for Okta groups that have read-only access within DuploCloud Tenants. For example, if your read-only groups are named readonly-team1 and readonly-team2, the prefix would be readonly-.
Okta API Token Settings
Okta API Token*
Enter the API token used by DuploCloud to synchronize users and groups with Okta.
Okta API Token ID*
Enter the identifier for the currently active Okta API token.
Admin Email*
Provide the email address that will receive notifications related to API token expiration and other Okta alerts.
DuploCloud displays the current Okta API token’s expiration date and shows alerts if it is expired or near expiration.
Single Sign-On Settings
Enable Okta Login*
Select this option to enable Okta Single Sign-On (SSO) for user login in DuploCloud.
Okta Domain*
Enter your Okta organization's domain URL (e.g., https://dev-32616951.okta.com).
Client ID*
Enter the OAuth 2.0 Client ID from your Okta application.
Client Secret*
Enter the OAuth 2.0 Client Secret associated with your Okta Client ID.
Enable DPoP
Enable this option to activate Demonstration of Proof of Possession (DPoP) for enhanced OAuth security.
Click Save to apply your changes.
Managing Okta Users, Permissions, and API Tokens
Once the initial integration is setup and fully configured, you can use the Okta Portal to add users, assign roles and permissions, delete users, revoke permissions, and generate and manage Okta API tokens. See the Okta documentation for specific tasks:
Manage Okta Users
Assign Roles and Permissions
Revoke Permissions:
Generate and Manage Okta API Tokens:
Synching updates: It can take several minutes for changes made in Okta to reflect in the DuploCloud UI. To force immediate synchronization:
Navigate to Administrator → Users in DuploCloud, and click Sync.
Last updated
Was this helpful?