Our Integration guide was accurate at the time of writing but vendors change things frequently! If you find errors or anything is outdated, let us know by raising a request in the Samurai Help Center and we'll get it updated.
TABLE OF CONTENTS
Overview
This guide describes the steps required to configure a Okta Workforce Identity Cloud telemetry integration in Samurai XDR. For convenience we will refer to Okta Workforce Identity Cloud as "Okta" for most of this document.
To create this Integration you will need to perform actions in Okta followed by configuration in Samurai XDR:
Okta Credentials
- Create an App Integration
- Edit Client Credentials
- Edit General Settings
- Grant access to Okta API scopes
Samurai XDR → Telemetry Integration
Create a new Samurai XDR Telemetry Integration for Okta, providing the credentials configured above.
Okta Credentials
Navigate to the Okta account management console at: https://YOUR_OKTA_SUBDOMAIN-admin.okta.com/
Log in to your Okta environment with Super Administrator credentials.
Create an App Integration
Navigate to Applications at https://YOUR_OKTA_SUBDOMAIN-admin.okta.com/admin/apps/active
Select Create App Integration:
Check API Services and click Next:
Enter an App Integration Name and click Save:
Edit Client Credentials
Select Public key / Private Key and then click Add key:
Generate new key was used when creating the example used in this documentation:
IMPORTANT: Copy the Private key in PEM format to somewhere secure. This is required later when setting up the Telemetry Integration in Samurai XDR. Click Done:
Copy Client ID – this is required later when setting up the Telemetry Integration in Samurai XDR. Click Save:
Edit General Settings
Click Edit in General Settings. Unselect Require Demonstrating Proof of Possession (DPoP) header in token requests. Click Save:
Grant access to Okta API scopes
Select the Okta API Scopes tab and grant access for the following API scopes:
- okta.apps.read
- okta.devices.read
- okta.logs.read
- okta.users.read
You can confirm your selections by selecting the Granted filter in the Consent column:
Configure the Integration in Samurai XDR
To create a new Okta integration you will need the following information:
A name for your new integration. This will be displayed on the Telemetry → Integrations screen.
An optional description for your integration. This can be useful if you connect multiple products or instances of the same product.
Your Okta subdomain.
The items previously noted in Okta:
Client ID
Private key in PEM format.
Sign in to Samurai XDR and select Telemetry → Integrations from the main menu:
Click on the Create button:
Select Okta Workforce Identity Cloud from the available Integrations:
Provide your Okta Subdomain, and the Client ID and PEM format Private key that were copied earlier in Okta, then click Next:
Click Test and Samurai XDR will reach out to Okta to validate the credentials provided:
When the Test has passed, the Finish button is enabled, click it to save your new Integration:
Samurai XDR will redirect you to the Telemetry Integrations screen where it will be visible:
For general information on Integrations refer to the Integrations article.