<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Coupa OIN Application Provisioning Error when Enabling Okta Identity Governance (OIG)
Jan 27, 2026
Identity Governance
Okta Classic Engine
Okta Identity Engine
Overview

When Governance Engine is enabled for the Coupa Okta Identity Network application, attempts to enable provisioning will result in the error:

 

OAuth credentials must be authenticated first before saving.

 

Error Message

Applies To
  • Okta Integration Network (OIN)
  • Coupa OIN Application
  • Okta Identity Governance (OIG)
  • Governance Engine
Cause

The OpenID Connect (OIDC) settings in Coupa are missing the required scopes.

Solution

In the Coupa web admin portal, under Setup > OAuth2/OpenID Connect Clients, the scopes needed for Coupa + Entitlements include:

Coupa Setup

  • openid
  • offline_access
  • core.user.read
  • core.user.write
  • core.common.read

 

Recommended content

Still looking for help?
Loading
Coupa OIN Application Provisioning Error when Enabling Okta Identity Governance (OIG)