The release of Workspace ONE 19.03 brought in a very seamless integration of Okta Applications.
If you have integrated the two solutions previously you will recall the number of steps required to create and entitle new applications in Workspace from Okta. This integrations you to create and entitle applications in Okta and have them seamless appear in Workspace ONE along with your Native and Virtual Applications.
Lets walk through the steps to integrate the two solutions.
In this blog we are going to assume that you have existing connectors for Workspace ONE UEM and Workspace ONE Identity. We are also assuming you have your Workspace ONE Identity access policies already configured for Mobile SSO, Certificate or Password (Cloud Deployment).
Part 2: Unified Digital Workspace
The objective of this section to automatically sync all SAML enabled applications from Okta to Workspace ONE. This configuration will eliminate the manual steps required to both create and entitle Okta applications in Workspace ONE.
Step 1: Create an Okta API Key
Log into the Okta Admin Console
Go to Security -> API
Click on Tokens
Click Create Token
Provide a name for the token
Click Create Token
Click the Copy Token button Note: Its very important you copy and save this token somewhere. Once you close this window you will not be able to retrieve this value again. You will have to delete the token and create a new one.
Step 2: Configure Workspace ONE with Okta API Information
Log into the Workspace ONE Admin Console
Click on Identity & Access Management -> Setup -> Okta Note: If you are using Chrome, please be aware of Chrome auto filling any fields.
Enter your Okta Cloud URL. Note: Do NOT use the Admin URL!!
Paste your Okta API Token
Select the username search parameter that will match in Okta.
NOTE: Okta Applications will NOT appear in the Workspace ONE Admin Console
Step 3: Testing
Log into Workspace ONE with a directory account.
You should now see all your Okta Applications along with any other applications configured in Workspace ONE.