GregH.00578 (Customer) asked a question.
Restricting IdP users
We use Google as IdP for a particular group of 3rd party users to authenticate to specific apps.
We set up our third party users in a Google domain that we control and they get accounts/addresses. I use this domain to restrict application assignment. (ie: if you have a specific email domain, you get added to a group that allows you to access App A.)
As currently setup, anyone with a gmail account can authenticate to our instance (but not access apps), which can mess up our Active User count.
How can I configure the Google IdP to only authenticate 'approved users' and deny anyone else?
Hi Greg,
Sergiu from Okta Support here. This seems to be a pretty specific setup, and I'm afraid that providing a solid answer will not be possible unless getting a hold of additional information. I would strongly suggest opening a support ticket, and we will be able to provide some more detailed answers. All the best!