# Okta

The Okta integration connects data from your Okta account to your Sola workspace, making it easy to search and find answers to your specific use cases.

{% embed url="<https://youtu.be/i1XnFbQ9TdQ>" %}

## Overview

The Okta integration provides a complete view of your identity and access across your organization, allowing you to monitor and analyze Okta security posture and potential threats.

With the Okta integration, you can:

* Gain visibility into user identities, groups, and roles.
* Monitor Okta activity and get insights into configuration settings.
* Ensure users and applications only have the access they actually need.
* Maintain security best practices for your Okta environment.

{% hint style="warning" %}
**Your data can only be retrieved, never modified.**

Once connected, your data is securely stored, and access is restricted to retrieving configurations and metadata only. Authentication methods ensure secure delegation of permissions while maintaining data integrity.
{% endhint %}

## Set up Okta data source integration with Sola

{% columns %}
{% column width="75%" %}
Go to ***Integrations*** > [***Data Sources***](https://app.sola.security/integrations/data-sources) > click ***New data source*** > select ***Okta***.

*The Sola wizard will take you through the steps.*
{% endcolumn %}

{% column width="25%" %} <a href="https://app.sola.security/integrations/data-sources?integration=okta" class="button primary">Set up Okta -></a>
{% endcolumn %}
{% endcolumns %}

### Connect Okta to Sola

To connect Okta, you’ll need an Okta admin account, or an [Okta service account](#how-do-i-set-up-an-okta-data-source-using-a-service-account) with Read-only Administrator access and IAM visibility permissions.

{% tabs %}
{% tab title="API Token" %}
This method uses an [API token](https://help.okta.com/en-us/content/topics/security/api.htm?cshid=ext-create-api-token#create-okta-api-token) to securely grant Sola read-only access to your Okta services and resources.
{% endtab %}
{% endtabs %}

*Follow the* [*step-by-step guide below*](#how-do-i-set-up-an-okta-data-source-using-a-service-account) *to complete the setup.*

<details>

<summary><strong>How do I set up an Okta data source using a service account?</strong></summary>

Complete the following steps to create a dedicated Okta service account with read-only access and connect it to Sola.

**1. Create a service account in Okta**\
You can also use an existing service account.

* In Okta Admin Console, go to ***Directory*** > ***People*** and click ***Add Person***.
* Use a dedicated internal email (e.g “<sola-integration@yourcompany.com>”) and save the user.

**2. Create an IAM resource set (for visibility permissions)**

* Go to ***Security*** > ***Administrators*** and open the ***Resources*** tab.
* Click ***Create resource set,*** then add Identity and Access Management resources (select `All Identity and Access Management resources`).

**3. Create a custom role (for IAM visibility)**

* In ***Security*** > ***Administrators***, open the ***Roles*** tab.
* Click ***Create new role*** and enable `View roles`, `resources`, and `admin assignments`.

**4. Assign permissions to the service account**

* Go to ***Security*** > ***Administrators*** > ***Admins*** and click ***Add administrator***.
* Add two assignments:
  * `Read-only Administrator` with `Entire Organization`
  * The custom role with the IAM resource set you created
* Save changes.

**5. Generate the API token and connect in Sola**

* Log out, then log in to Okta as the service account.
* Go to ***Security*** > ***API*** > ***Tokens*** and click ***Create Token*** (copy the token value).
* In Sola, add the Okta data source and provide:
  * `Okta Domain`
  * `API Token`
* Click Test Connection, then continue.

</details>

## Explore the app gallery for Okta apps

![](/files/bKdo3yzED39AfQ5Oyclq) Get started with [Okta-focused security apps](https://sola.security/app-gallery/?search=okta), built by our expert team.

<figure><img src="/files/4DpqPOft7rGvZybASjYe" alt="Explore the app gallery for Okta apps"><figcaption></figcaption></figure>


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.sola.security/integrations/data-sources/okta.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.