31.05.21
2 Min read
Book a Demo
While Okta and NS1 support SAML Authentication, Provisioning and de-provisioning users still requires manual work. We hate manual work, so here’s a way to automate the entire process, end-to-end, using Okta Workflows.
Still unfamiliar with Workflows? Start here.
2. On Okta Workflows Dashboard, Click “Connections” and “New Connection” with type “API Connector”
3. Select Custom Auth Type, Header name is X-NSONE-Key and value is your api key
Now that we have our API connection ready, we can build our new workflow. In our case, the event that triggers the workflow is “User Added to Group”, where we continue if the group ID is relevant for NS1. Then it reads the user and formats his user name as okta_firstname_lastname, and creates the user in a specific team.
2. Read the users name and Display name, and compose your user ID based on the logic you’ve decided on.
3. Construct the JSON object (Function -> Object -> Construct) with the following names and values:
username -> Output from Compose
email -> Okta’s Username
name -> Okta’s Display name
Teams (type: list of text)-> team ID in NS1 you want to assign it to
Tip: If you don’t know your team ID, run curl -X GET -H “X-NSONE-Key: $API_KEY” https://api.nsone.net/v1/account/teams
4. Create a new API Connector action and select “Put”. Select your NS1-API connector that we created on the first stage.
5. Populate the following values:
URL: https://api.nsone.net/v1/account/users
Body: the output of the Object we’ve constructed
Once done, feel free to test this around.
To make this extra-perfect, I also suggest editing the okta username format in the NS1 SAML app in Okta:
There are many more cool, time-saving hacks now possible with Okta.
Contact us to get the full suite up & running from day-1.
Schedule a call with our experts. Discover new technology and get recommendations to improve your performance.