Skip to content

Commit 1de4f8a

Browse files
leifdreizlerleifdreizler
authored
Merge pull request #1121 from segmentio/leif/update-okta-instructions
Leif/update okta instructions
2 parents ba8932d + 5eb7f22 commit 1de4f8a

File tree

3 files changed

+8
-16
lines changed

3 files changed

+8
-16
lines changed

src/segment-app/iam/images/scim_attribute_mappings.png

-109 KB
Binary file not shown.

src/segment-app/iam/images/scim_delete_attributes.png

-164 KB
Binary file not shown.

src/segment-app/iam/scim.md

Lines changed: 8 additions & 16 deletions
Original file line numberDiff line numberDiff line change
@@ -94,25 +94,17 @@ For example, you might map `{firstName} {lastName}` from your IdP to `displayNam
9494
![](images/okta_provisioning.png)
9595

9696
4. Next, select **To App** in the left sidebar of the **Provisioning** tab. Click **Edit** and select both **Create Users** and **Deactivate Users**. Click **Save**.
97-
5. From the **Provisioning** tab, click **Go to Profile Editor** > **Mappings**.
98-
6. In the left tab that appears, review the data that Segment sends to Okta.
99-
Select `do not map` for all attributes except `email` and `displayName`. Click **Save Mappings**, and **Apply Updates Now** (if prompted).
97+
5. Click the **Assignments** tab. You can now assign people or groups. Before you continue, read through the [features section](#features) in this doc to make sure you understand how groups work. Segment recommends that you assign users to the Segment app by Okta group. This allows you to manage which groups in your organization can authenticate to Segment. You can also assign users individually.
10098

101-
![](images/scim_attribute_mappings.png)
99+
![](images/scim_assignments.png)
102100

103-
7. Open the **Mappings** again, and click the right tab. This represents the data that Okta sends to Segment.
104-
Again, click `do not map` for all attributes except `email` and `displayName`. Then click **Save Mappings**, and **Apply Updates Now** (if prompted) to close the dialog.
105-
8. Next, delete all unused attributes from the bottom of the **Provisioning** Tab. You must include "Given Name" and "Family Name" as they are required by Okta (but are not used by Segment).
101+
6. Once you assign your users, push the assigned Okta groups to Segment.
106102

107-
![](images/scim_delete_attributes.png)
103+
![](images/scim_group_push.png)
108104

109-
9. Navigate back to the Segment Okta app. You can now assign people or groups. Before you continue, read through the [features](#features) section in this doc to make sure you understand how groups work.
110-
10. Segment recommends that you assign users to the Segment app by Okta group. This allows you to manage which groups in your organization can authenticate to Segment. You can also assign users individually.
105+
7. Next, go to the Segment app and assign permissions to these groups.
111106

112-
![](images/scim_assignments.png)
107+
> success ""
108+
> **Tip**: You can also link Okta groups to an existing group from in the Segment app using the Okta UI.
113109
114-
11. Once you assign your users, push the assigned Okta groups to Segment. Then, go to the Segment app to assign permissions to these groups. You can also link Okta groups to an existing group from in the Segment app using the Okta UI.
115-
116-
![](images/scim_group_push.png)
117-
118-
![](images/scim_edit_groups.png)
110+
![](images/scim_edit_groups.png)

0 commit comments

Comments
 (0)