Documentation
incode.com
  1. Integrations Ecosystem
  2. Directory Integrations

Okta Directory

The Okta directory integration syncs your Okta user directory with Incode, enabling employee lookups and claims matching during identity verification sessions. This integration is required for any flow that requires verifying a user against their Okta directory record, including ITSM verifications, Self-Serve Portal resets, and claims matching in IAM flows.

This is a directory-only integration. It does not trigger verification sessions. Use Okta IDV Standard​ integration for authentication-layer integration with Okta.

Prerequisites

Ensure you have the following before you begin:

  • Access to the Integrations page in Dashboard. Contact your Incode Representative if you do not see it.
  • An Okta administrator account with permissions to create and manage integrations.

Synced Data

When the Okta directory integration is active, Incode syncs user and group data from your Okta instance. Synced attributes are used to look up users by loginHint and to supply claims for matching against verified identity data.

The following Okta user profile attributes are used by Incode, depending on your claims matching policy configuration:

AttributeUsed for
Email/loginPrimary user lookup (loginHint)
First name, last nameName claim matching
Date of birthDate of birth claim matching
Address fieldsAddress claim matching
Phone numberPhone claim matching
Group membershipPolicy routing and scoping

Make sure the relevant attributes are populated for all users in the groups you intend to sync. Missing attributes will cause claims matching failures for those users.

Set Up Okta Directory Integration

Create the Integration in Dashboard

  1. Log in to Dashboard.
  2. In the left menu, click Integrations.
  3. Click New Integration.
  4. From the Directory tab, click Okta Directory, then click Continue.
  5. Enter a Directory Name.
  6. Enter your Okta Instance URL in this format: https://your.company.name.okta.com.
  7. Enter a Client ID for the Okta service application.
  8. You can enter a User Group ID to assign to Workforce.
  9. Click Save.

Authorize Directory Access in Okta

After saving the integration, Incode initiates an authorization flow to request read access to your Okta directory. Follow the prompts in your Okta Admin Console to approve the required permissions.

📘

Note

You must have Okta administrator permissions to approve directory access. If you lack sufficient permissions, the integration remains in an incomplete state and you must restart setup.

Sync the Directory

After authorizing access, trigger a directory sync to import your users into Incode.

  1. In the left menu, click Integrations.
  2. In the Directory tab, locate the directory you want to sync.
  3. On the integration card, click Sync directory.

Depending on the size of your directory, the initial sync may take some time.

View Synced Users

You can see synced users and their enrollment status by clicking Directory Information in the left menu.