binder enrico 

Can i import ldap groups into okta ?


we would like to keep user and group management central on ldap

we are able to import users (needs import to be enabled by okta support)
when import is done it shows x users imported but 0 groups imported.

i verified okta ldap agent and ldap server logs and i see that agent is querying for groups and agent is receiving the groups and sending the to okta. 

when does okta import groups - what ldap attributes it needs to get it working ?

Darron Hellmann (Okta)
Hi Enrico

Thank you for the community participation. The short answer is Yes. However, there are certain prerequisites to consider in order for groups to be searched for and imported to Okta. I've provided a link to installing and configuring the LDAP Agent for further reference. You'll want to pay close attention to the DN container for group searches (that is the root of the group subtree in your environment). Note that the schema templates are merely suggestions based on common values. Each LDAP environment is unique and might require you to override the default values with your environment-specific settings. You can use Apache Directory Studio to examine attributes for existing users and groups to verify the template values or select the appropriate setting. 

If this group issue persists, may I suggest opening a support ticket and we'd be happy to work with you to resolve the issue.