Okta Directory¶
Okta Directory is a newer version of identity and access management (IAM). Okta Directory is a cloud-based identity and access management platform that helps organizations securely manage user authentication and access to applications, devices, and data.
The Okta Directory application on Hire2Retire uses OAuth authorization. By linking your Okta Directory account with Hire2Retire, you can authorize the RoboMQ application to have delegated access on your behalf. RoboMQ needs the following permissions on your account to provide a seamless integration experience:
| Scopes | Explanation |
|---|---|
| okta.schemas.read | Allows the app to read information about Schemas in your Okta organization. |
| okta.groups.manage | Allows the app to manage existing groups in your Okta organization. |
| okta.users.manage | Allows the app to create new users and to manage all users' profile and credentials information. |
You need to make this app as an administrator. For that, you need to follow these steps:
- In your registered application go to
Admin rolesand click on Edit assignments. - Select Role as
Super Administratorand click on Save changes.
Create a Connection¶
You need to have the application registered on your tenant & provide the necessary permission required by Hire2Retire. Hire2Retire requires the following details to create a connection.
- Client ID - Application ID
- Tenant URL - Unique identifier of the Okta instance.
Follow the steps below to add the public key to the Okta instance:
- Copy the public key from the Hire2Retire connection UI.
- In your registered application, select
General>Public Keys>Add - Paste the copied public key and click Save.
Navigate to the "General" tab within your registered application to locate the Client/Application ID and use the top-right dropdown in the Okta Directory portal for the Tenant URL.
Upon clicking the 'Link Account' button, the connection will be configured successfully.