Follow these steps to configure OKTA and integrate it with MuchSkills
Step 1: OKTA Setup
Create an Application in OKTA
Log in to your OKTA Admin Portal.
Go to Applications and click Create App Integration
Navigate to admin portal and applications
3. Select API Services as the application type
Create a new app integration (API Services)
4. Name the application “MuchSkills” and click Next.
Step 2: Obtain Credentials from OKTA
Client ID
Once the app is created, you will see a Client ID.
Copy the Client ID, which you will later paste into MuchSkills.
Copy the client ID and paste into MuchSkills integration
Domain
Your unique OKTA subdomain is visible at the top right of the OKTA admin dashboard (e.g., companyname.okta.com).
Copy this subdomain for use in MuchSkills.
Copy domain and paste into MuchSkills
Private Key
In OKTA, navigate to Client Credentials.
Select Public Key/Private Key and click Edit.
Click edit and change from client secret to Public Key
3. Scroll down and click Add Key to generate a new key pair.
Scroll down and add new key
Generate a new key
4. Copy the Private Key from the JSON output for later use in MuchSkills.
Copy the generated Priavte key
Step 3: Paste data into MuchSkills
In MuchSkills, go to Team Settings, then Integrations, and select OKTA.
Paste the Client ID, Domain, and Private Key you obtained earlier into the appropriate fields.
Paste Client ID, Private key and domain from step 3 into MuchSkills
3. Don't press connect yet. Instead continue with the steps below.
Step 4: Grant API Scopes in OKTA
In the OKTA Admin Portal, go to API Scopes.
Grant the following scopes:
okta.groups.read: Allows the app to read group information.
okta.users.read: Allows the app to read user data from the OKTA directory.
head to Okta API Scopes
3. Click Grant for both scopes.
Grant access to okta.groups.read
Grant access to okta.users.read
Note: It may take a few minutes for the scopes to update.
Step 5: Disable Proof of Possession (DPoP)
Go to your Okta app.
Navigate to General > General Settings.
Uncheck “Proof of possession”.
Step 6: Assign the Required Admin Role
Open the Admin Roles tab.
Click Edit assignments.
Assign the API Access Management Administrator role.
If this role is unavailable in your plan, the Application Administrator role can be used instead. It provides the necessary level of access.
Step 7: Group Synchronization
In OKTA, go to Groups and create a new group called “MuchSkills” or select an existing group.
Head to directory > groups in OKTA and click 'Add group'
Assign the users you want to synchronize with MuchSkills to this group.
The group will be ready for synchronization with MuchSkills once the application is fully configured. Go back to MuchSkills, click Connect and set up the syncronisation.
Choose the correct group in MuchSkills integration page and start the sync
Step 8: Optional - Add Custom Fields
If you have custom data (such as a full country name or a profile photo) that is not available by default, you can add custom fields:
In OKTA, go to the Profile Editor.
Edit the User Type and add any custom fields as needed.
Example: Add a field called Country with a variable name country for a full country name.
Add a field for Photo if you want to sync profile images.
Save the changes. These fields will now be synchronized with MuchSkills as part of the user profile.
Add a new attribute you want to sync
Final Step: Testing and Verifying
Ensure that the groups and users are properly synchronized by checking user profiles in MuchSkills.
If necessary, manually trigger a synchronization to verify that the custom fields are being imported correctly.
The synchronization will run automatically every 30 minutes, keeping your OKTA directory up to date in MuchSkills.
By clicking "Accept", you agree to the use of cookies to enhance site navigation, analyze site usage, and support our marketing efforts. To learn more, please review our Cookie Policy and Website Privacy Policy.
