Salesforce Application integration is configured in Okta, and some groups (Group1 and Group2) are assigned to this app. Each group has Permission Sets assigned to it.
- Group1 has Permission Sets assigned as shown below:
- Group2 has Permission Sets assigned as shown below:
This article explains how to retrieve a list of Permission Sets assigned to these groups.
- Salesforce
- Permission Sets
- Okta Classic Engine
- Okta Identity Engine (OIE)
To to retrieve a list of Permission Sets, follow the steps below:
-
Log in to the Okta Admin Console.
-
Navigate to Security > API > Tokens > Create Token. Name the token and save the key somewhere safe.
-
Download and install the Postman application on the device being used.
-
After it is installed, launch the Postman application, then click on the Environment quick look as shown below.
-
Click Add, name it in the first field, under VARIABLE, type
apikey, and under CURRENT VALUE, paste the API token created in Step 2. -
Next, in the second field, type
urlunder VARIABLE, and under CURRENT VALUE, enter the org URL where the token in step 2 was created( for example,https://domain.okta.com). When done, click Save.
-
The Groups (Okta API) / Group Operations / List Groups API command will be used:
{{url}}/api/v1/apps/{{appId}}/groups
-
Replace {{appId}} with the application id. In Postman, go to the Apps collection and use the API command List Apps to retrieve the appId for the Salesforce app, for which a list of the Permission Sets assigned to groups should be pulled.
Another way to get the appId is to go to Okta Admin Console > Applications > Applications > Salesforce app and copy the appId from the browser URL, as shown below.
-
API call
{{url}}/api/v1/apps/{{appId}}/groupswill list all the groups assigned to the Salesforce app and include Permission Sets for each group assigned to the app.
