Allow Non-Super Admins to Run Imports for Active Directory Integrations
Sep 29, 2025
Okta Classic Engine
Directories
Okta Identity Engine
Overview
This article details how to configure Custom Roles and Resource Sets to allow for a non-super admin to perform import actions for Active Directory integrations with Okta.
Applies To
- Directories
- Imports
- Custom Roles
- Resource Sets
Cause
Solution
Follow the steps or video below.
Create a Custom Role
- Navigate to Security > Administrators > Roles.
- Select Create new role.
- Ensure the option Run Imports is checked under the Profile source permissions settings.
- Configure remaining role permissions as desired.
Create a Custom Resource Set
- Navigate to Security > Administrators > Resources.
- Select Create new resource set.
- Designate a name and description for the new resource set. Select Add Resource.
- In the "Find a resource type" search bar, select Applications from the drop-down menu. Then, click Save selection.
- Select the option for Select applications.
- Search "Active Directory" and select the option for All Active Directory applications. Select Save selection.
- Now, the newly created Role(s) and Resource set(s) can be configured for Administrators by navigating to Security > Administrators > Admins.
- These settings will allow for non-super admin accounts to run imports from Active Directory integrations from the Admin Console, so long as they are configured for the non-super Admin account.
