Skip to main content
Integrating Okta SCIM via SWA with TeamOhana
Alayna Kolb avatar
Written by Alayna Kolb
Updated over a month ago

Note: If you wish to use SAML for authenticating users, first refer to this set-up guide: Adding OKTA SAML authentication to your TeamOhana account

  • Unique identifier field for users (case sensitive) - email

  • Supported provisioning actions

    • Import New Users and Profile Updates

    • Push New Users

    • Push Profile Updates

Prerequisites

Before you get started with your Okta SCIM setup. You will need the following:

  1. URL
    The URL format is: https://api.teamohana.us/{your_company_name}
    For example: the url can be https://api.teamohana.us/acme

  2. The API Key.
    This will be a secret.

  3. Both domain and api key will be provided by TeamOhana. Please reach out to your CSM and request this information if you do not already have access to it.

Setup

In your Okta instance, go to Applications > Applications and click on Create App Integration. You should see a new popover, select SWA - Secure Web Authentication and click on the Next button.

You will see a form. Enter the following required details

Click on Finish.

In the App Page Click on General. Click on the Edit button. Select Enable SCIM Provisioning and hit Save.

Open the Provisioning tab. Click Edit. Enter the SCIM connector base URL. This would be the URL you go as a part of the pre-requisites.

Enter the Unique identifier field for users as email.

Select the following values for Supported provisioning actions

  • Import New Users and Profile Updates

  • Push New Users

  • Push Profile Updates

Change the Authentication Mode to HTTP Header

Enter the API key in the text box as shown in 15 and hit Save.

Refresh the page and you should see a To App section now. Click on it. Click the Edit button and select/check the following three options

  • Create Users

  • Update User Attributes

  • Deactivate Users

and click Save.


This is an optional step. If you already have users in your TeamOhana instance and wish to link them to your Okta instance to manage them via Okta then do the following.

Click on the Import tab. A list of users will show up as shown below. If the user exists in your Okta instance then it will show 1 Exact Okta user match found. Click on the checkbox and click Confirm Assignments. The user will show up in the assignments.


To create an Okta user in TeamOhana. Go to Directory > People.

Click on the user profile you want to create in TeamOhana. Click on the Applications tab in the user profile page and click on Assign Applications. In the list search for TeamOhana and click on Assign.

You will see a popup containing all the attributes that will be synced to TeamOhana. Scroll Down and hit Save and Go Back.

The user will be created successfully in TeamOhana, but they will not receive any notification that their user profile has been created until you manually invite them from the platform.

Click on the user to open the user profile.

You will need to change the following attributes as per the requirements

  • Role

  • User attributes > Department access

  • User attributes > Job category & level access

Additional Notes

Developer documentation can be found at https://api.teamohana.us/

Did this answer your question?