FaisalA.63369 (DCMS) asked a question.
Hi,
We currently have Okta integrated with our on premise AD, can we also integrate it with Azure AD in order to utilise the Auto pilot feature for Windows 10 roll outs?
Thanks
We use cookies to provide the best website experience and to help understand marketing efforts. We may also share data with ad partners to reach potential customers across the web. To learn more, visit our Privacy Policy. Click here for Your Privacy Choices. You may also opt out of this sharing by signaling your preference via GPC, applicable only to the browser signaling the opt-out.
More information
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
Select All
We use cookies to provide the best website experience and to help understand marketing efforts. We may also share data with ad partners to reach potential customers across the web. To learn more, visit our Privacy Policy. Click here for Your Privacy Choices. You may also opt out of this sharing by signaling your preference via GPC, applicable only to the browser signaling the opt-out.
More information
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
Select All
Hi Faisal,
With regards to the Azure AD Join this can be accomplished with Okta as the federation for users. The following document provides the steps needed.
https://www.okta.com/sites/default/files/Okta_Windows_10_azure_AD_join.pdf
The document does assume the federation has already been configured, details on how this can be achieved can be found here: https://help.okta.com/en/prod/Content/Topics/Apps/Office365-Deployment/deploy-main.htm
Let me know if this helps or if you have any follow up questions.
Thanks,
Chris Hancock
Hi Chris,
Thanks for coming back to me,
We don't have a Office 365 environment at the moment is that a requirement in order to integrate Okta with Azure AD.
Thanks
Faisal
Hi Faisal,
The Azure and O365 are 2 sides of the same coin, as in the domain management is shared along with user management as such using the O365 app can still be used to configure federation for Azure environments. The application we have will read the license options available for your tenant if provisioning is enabled and allow you to provision users from Okta if you choose. Otherwise users would need to be created in Okta and Azure independently (or via AD sync to Azure and Okta) and ensure the values are accurate so that we map the correct users.
As long as the users assigned the app in Okta have the ImmutableID from their AAD Object and the UPN as the username then federation will succeed.
NOTE: When federating a domain in Azure this will impact all users that have UPN of the domain that was federated, all authentications will be redirected to Okta as such with these types of implementations we would recommend using our professional services teams as they have the expertise to plan and implement these scenarios.
Details on their services can be found here: https://www.okta.com/services/professional-services/
Thanks,
Chris Hancock
Thanks Chris
HI Chris,
We have managed to complete the integration now, however we are having issues with syncing the Okta password to AAD, Have you come across this?
When using the WS federation method the password does not sync and there are no ability to reset password on ADD, but when we tried SWA method its still does not sync but we are able to reset the password in AAD, any ideas?
Thanks
Faisal