<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Integrate Oracle Cloud SCIM with Okta
Jan 7, 2025
Okta Classic Engine
Okta Identity Engine
API Access Management
Overview

This article provides steps to integrate Oracle Cloud users in Okta using SCIM. See the following Oracle SAML Configuration Guide for more details.

Applies To
  • SCIM
  • Manage users
Solution

Provision SCIM

Use the System for Cross-domain Identity Management (SCIM) provisioning process to set up Single Sign-On (SSO) to manage user identities in the cloud. Oracle Cloud Infrastructure (OCI) Identity and Access Management supports user life cycle management between Okta and OCI Identity and Access Management.

  1. In Okta, click Admin.
  2. In the left pane, click Applications, then Applications.
  3. Click Create App Integration.
  4. Select SAML 2.0, then click Next.

 

  1. In the App name field, enter OCI OKTA SCIM Integration, then click Next.

 

  1. Perform steps 6 to 10 from the PROVISION SCIM section in the following Oracle Configuration Guide
  2. In Okta, in the Single sign-on URL field, enter the copied text.
  3. In OCI, on the Provider ID row, click Copy.
  4. In Okta, in the Audience URI (SP Entity ID) field, enter the copied text.
  5. In the Default RelayState field, enter https://oc2.cloud.oracle.com/?tenant=yourtenancyname&domain=domainname (Retrieve the tenant and domain values from the URL in the address bar of the OCI page)

  1. Click Next.
  2. Select App type This is an internal app that we have created, then click Finish.

 

  1. Click the General tab.
  2. Beside App Settings, click Edit.
  3. Beside Provisioning, select SCIM, then click Save.

  1. Click the Provisioning tab.
  2. Beside SCIM Connection, click Edit.
  3. Enter the domain URL:
    1. In Okta, in the SCIM connector base URL field, enter the OCI domain URL.
    2. Replace the training :433 with /admin/v1
  4. In the Unique identifier field for users, enter userName
  5. Beside Supported provisioning actions, select:
    • Import New Users and Profile Updates
    • Push New Users
    • Push Profile Updates
    • Push Groups
  6. In the Authentication Mode dropdown, select HTTP Header.
  7. Enter the authorization token:
    1. Generate a base64 encoded token as demonstrated in step 26 from the PROVISION SCIM section instructed in the Oracle Configuration Guide
    2. In Okta, under HTTP Header, enter the token in the Authentication field. 

    1. (Optional) Click Test Connector Configuration.

    1. Click Save.
  2. Beside Provisioning to App, click Edit.
  3. Enable:
    • Create Users
    • Update User Attributes
    • Deactivate User
  4. Click Save.

  1. Click the Assignments tab, expand the Assign dropdown, click Assign to People, set up the assignment, and click Done.
    The new user should appear in the Default domain's Users list in OCI.
  2. Go to the Import tab and click Import Now. The administrators should be listed. 

 

Recommended content

Still looking for help?
Loading
Integrate Oracle Cloud SCIM with Okta