Versions Compared

Version Old Version 27 New Version 28
Changes made by

Chad Fay

Chad Fay

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Info

Note: SCIM 2.0 is supported and currently only works with the Okta Advanced app from Avigilon Alta Market Place.

...

Info

Note:
If a user is manually inactivated in the Alta Access system, they will no longer sync through Okta.

The push now feature in Okta is not currently supported.

Okta Advanced app set up and configure

  1. Go to http://control.openpath.com/login and sign in. To access the European Alta Access, go to
    http://control.eu.openpath.com/login .

  2. Go to App marketplace > Get apps.

    1. Click the Okta Advanced tile.

    2. Click the + Get app Organization button.

  3. Go to App marketplace > My apps.

    1. Click the pencil icon to edit Okta Advanced

  4. In Sync type, select SCIM.

  5. Click the Generate auth token button and copy the token. Click Done.

    1. You will need this token for the setup of SCIM in Okta in step 6.

  6. Set up SCIM in your Okta portal.

  7. After setting up SCIM in Okta, manually trigger the first sync in the Okta portal and then refresh the Access Groups or Roles page in Alta Access.

  8. Enable the following settings, as needed:

    1. Auto-create mobile credential - Creates a mobile credential for every user.

    2. Auto-create cloud key credential - Creates a cloud key credential for every user.

    3. Sync mobile phone numbers - Syncs the mobile phone number for every user. Phone numbers must
      use E.164 format with a maximum of 15 digits: +[country code][subscriber number
      including area code]

    4. Enable single sign-on (SSO) for users with portal access - Allows Okta super admin users to log in to the Avigilon Alta Access with their Okta credentials.

    5. Enable single sign-on (SSO) for mobile app - Allows users to log in to the Openpath app using Okta
      credentials.

  9. SCIM advanced mapping (optional)

...

  1. In the left-hand menu, select Applications and then click Applications item.

  2. Click Create App Integration, choose SAML 2.0, then click Next to complete the SAML setup workflow.

  3. Go to the General tab, then select SCIM under Provisioning.

  4. Switch to the Provisioning tab and click on Integration.

  5. Enter the following SCIM Connection settings:

    1. SCIM connector base URL: Enter the base URL for your organization (e.g., https://yourcompanyname/scim/v2/okta/).

    2. Configure the fields for the Unique identifier for users, Import New Users and Profile Updates, Push New Users and Profile Updates, and HTTP Header for Authentication Mode.

    3. In the Authorization section, paste the token from Alta Access.

  6. Test the connection configuration and click Save.

  7. Switch back to your Okta Advanced app, continuing at #7 above.

SCIM

...

advanced mapping

(Optional) Enable the Show advanced mapping toggle. Use the JSON editor to create rules to be sent in
HTTPS requests that map users from the identity provider to a specific group or all groups in Alta Access.

...