<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7VEPSA3Okta Classic EngineSingle Sign-OnAnswered2024-04-30T09:18:24.000Z2018-01-03T21:34:35.000Z2018-08-22T19:55:44.000Z

j5v7c (j5v7c) asked a question.

Edited by varun.kavoori1.5210444522562532E12 September 5, 2018 at 1:19 AM
Permissions based on AD groups in custom application

I have an internally hosted node.js web application that I need to integrate with Okta for authentication purposes. I plan to have permissions (for read/write etc.) in the application. My organization uses AD groups for managing it's users in Okta.

 

Is it possible to assign permissions based on the AD groups? If yes, can you point me to some documentation/examples for it? As of now, I can authenticate using the oidc middleware for node.js (https://www.npmjs.com/package/@okta/oidc-middleware) and can get the Okta groups the authenticated user is a part of but not the AD groups.

 

Note: Found a similar question on the help center - https://support.okta.com/help/answers?id=906F0000000I0OtIAK

 

The knowledge base link in the provided solution did not work.

  • 1 answer
  • 673 views

  • mike.davie1.5312945692819849E12 (Customer First Programs)

    Hello!

    Yes, it is possible. you can assign the application to the AD group and users will be provisioned with it if you have provisioning feature enabled. 

This question is closed.
Loading
Permissions based on AD groups in custom application