Skip to main content

Okta: Employee data sync

R
Written by Riya Sebastian
Updated over 3 weeks ago

When you integrate Atomicwork with Okta, you can also sync employee data into Atomicwork for use in workflows and other capabilities. Every 24 hours, Atomicwork syncs new users, suspended and deactivated users. Updates to users on Okta also sync every 24 hours.

Atomicwork does not delete users on the platform unless you set up inline hooks on Okta. You can also configure inline hooks if you want to sync users more frequently.

When you configure inline hooks, you can set up events that need to be communicated to Atomicwork: this could include user updates, deactivations and suspensions. Whenever we receive an event about user suspensions or deactivations, those users are deleted on Atomicwork.

To sync Atomicwork with Okta, you need to connect Okta and Atomicwork.

Sync employee attributes from Okta

  • Navigate to Settings > App Store and click on Settings in the Okta card.

  • Click on Enable next to Sync employee data.

  • You can map Okta attributes to Atomicwork attributes.

    • If the Manage Applications permission is provided during setup, Atomicwork will automatically fetch all available fields from Okta (including custom attributes) and display them for easy mapping.

      Mapping Okta attributes to Atomicwork attributes.png

    • If this permission isn’t granted, you'll need to manually enter the variable name from Okta and select the corresponding Atomicwork attribute to map each custom field you want to sync.

      • To find the variable names for your Okta attributes, navigate to your Okta dashboard > Directory > Profile Editor > Default Profile.

      • Copy the variable name for the attribute you want to sync and paste it into the Enter reference key text box.

        Manually sync Okta attributes to Atomicwork.png

  • Click on Enable. New users and updates to users will sync every 24 hours.

  • To edit the attribute mapping, click on Manage attributes in the Okta settings page.

    Okta - Manage attributes.png

Configure Okta inline hooks

  • Log into the Atomicwork portal. Navigate to Settings > My Account > Public API Token

  • Create a new token and copy it into a safe place

  • Go to Okta admin console > Workflow nav item > Event hooks. Click on Create Event Hook

  • Here's the format for your webhook URL: https://{youraccount}.atomicwork.com/api/v1/users/webhook/OKTA/receive. Give it a recognizable name to make it easy for your team to understand which event hooks are for what purpose.

  • Enter X-Api-Key as the Authentication Field under Credentials. Enter the Public API Token you created in step 1 as the Authentication Secret.

  • Choose the user events you want to track. When we receive these events - "User deleted", "User suspended", "User deactivated", the user would be deleted on Atomicwork.

  • Skip the filter application and preview steps.

  • Click Verify. Once verified, Atomicwork will start listening to events from Okta and update user profiles accordingly.

Did this answer your question?