Documentation
incode.com
  1. Integrations Ecosystem
  2. IAM Integrations

Okta IDV Standard

The Okta IDV Standard integration adds Incode biometric identity verification as a native step within Okta authentication policies. Using the Okta Identity Verification Standard, Incode is registered as a third-party identity verification provider directly in Okta — no custom redirects or middleware required.

Once configured, Okta can invoke an Incode verification session at any point in an authentication policy: during account recovery, MFA reset, step-up authentication, or high-assurance sign-in flows. The verified result is returned to Okta and used to allow or block the user from completing the flow.

This integration is listed on the Okta Integration Network (OIN).

📘

Okta IDV Standard vs. Okta IDP

The Okta IDV Standard integration uses Okta's native Identity Verification Standard protocol to invoke Incode from within an Okta authentication policy. The Okta IDP integration configures Incode as a full identity provider and authenticator for your Okta organization. Both can be used independently or together depending on your use case.

Prerequisites

Before you begin, ensure you have:

  • Access to the Integrations page in the Incode Dashboard. Contact your Incode representative if you do not see the Integrations page.
  • A Workflow created for this integration
  • An Okta Identity Engine (OIE) instance
  • An Okta administrator account with permissions to add and modify Identity Providers and Authentication Policies
  • The Identity verification with third-party identity verification vendors Early Access feature enabled on your Okta instance
📘

Enabling the Okta Early Access feature

To enable this feature, go to your Okta Admin Console → SettingsFeatures and search for "Identity verification with third-party identity verification vendors". Toggle it on. If the feature is not visible, contact Okta support to request access.

What this integration enables

Once configured, you can use the Okta IDV Standard integration to add Incode verification to the following flows:

  • Account resets and recovery — verify a user's identity before allowing a password reset or account unlock. See Account resets & recovery.
  • Passwordless sign-in — gate high-assurance sign-in steps with biometric verification. See Passwordless sign-in.
  • Custom claims matching — configure which identity attributes are matched against your Okta directory during verification. See Configure claims matching.

Set up guide

Step 1: Create the Okta IDV Standard integration in Dashboard

  1. Log in to Dashboard.
  2. In the left navigation, click Integrations.
  3. Click New integration.
  4. From the IAM tab, select Okta IDV Standard, then click Continue.
  5. Enter a Name for this integration.
  6. Use the dropdown to Select a Workflow for this integration.
  7. Enter your Okta instance URL in the format https://yourcompanyname.okta.com.
  8. Copy the generated Client ID and Client Secret. These are required in Step 2.
  9. Click Save.
📘

Note

The Client Secret is shown only once. Store it securely before navigating away from this screen.


Step 2: Configure Incode IDV in Okta

  1. Log in to your Okta Admin Console.

  2. Navigate to SecurityIdentity Providers.

  3. Click Add Identity Provider and select Incode IDV.

  4. Enter a name for your integration.

  5. Paste the Client ID and Client Secret copied from Step 1.

  6. Click Finish.

Watch the demo →

Updated 3 days ago

What’s Next