Part of the Okta-AD Integration guide
Delegated Authentication allows Okta to use Active Directory as the authentication source for AD-imported users, meaning users authenticate against AD rather than Okta directly. ZeroTek recommends disabling this so that Okta handles authentication β giving you full control over authentication policies, MFA enforcement, and user experience regardless of the underlying directory.
ROLE REQUIRED
ZeroTek Administrator
ZeroTek Technician
If you are completing this procedure in sequence as part of the Okta-AD Integration, you are already logged into Okta as an Okta Super Administrator.
IMPORTANT
Most MSPs will not have imported any AD users at this point in the integration process. If you have already imported AD users, email ZeroTek Support (support@zerotek.com) or further guidance before proceeding.
BEFORE YOU BEGIN
As part of the Okta-AD Integration guide, this procedure assumes you have just configured basic settings and the user profile.
Steps
In Okta, navigate to Directory β Directory Integrations, then click Active Directory.
On the Provisioning tab, under Settings, click Integration.
Clear the Enable delegated authentication to Active Directory checkbox and click Save.
Click Disable AD Authentication (assuming you have not yet imported any AD users).
NEXT STEPS
As part of the Okta-AD Integration guide, your next step is to Configure Okta-mastered provisioning for the AD integration.