Skip to main content
About

How to Connect Okta to Coalition Control

  • Updated

What is the Okta Integration?

The Okta integration connects your Okta account directly to the Coalition Control platform. This connection gives Coalition read-only access to your Okta instance to gain insight into your identity security configuration and automate compliance evidence collection.

By linking Okta, you provide Coalition Control with visibility into key identity and access management (IAM) settings. We only collect data required to verify your security posture, including:

  • Users
  • User Groups
  • Identity Policies
  • Log History
  • Roles & Permissions

Benefits of Connecting Okta

Connecting your Okta account unlocks the full benefits of compliance automation within Coalition Control.

  • Automate Evidence Collection: Stop manually gathering screenshots. The integration automatically pulls evidence for dozens of compliance controls related to identity, access, and multi-factor authentication (MFA).
  • Gain Security Insights: Get a unified view of your identity security controls and identify potential misconfigurations or security gaps based on best practices.
  • Strengthen Your Security Posture: Let Control monitor your Okta environment to ensure your settings remain compliant and secure.

How to Connect Your Okta Account

Follow these steps to authorize the read-only connection between Okta and Coalition Control.

Note: Only users with "Account Admin" permissions in Coalition Control can set up new integrations. Please contact your account administrator if you do not see the option to connect.

Step 1: Navigate to Integrations or to the Integrations Drawer within Security Compliance section of Control

Log in to your Coalition Control account and select Integrations from the navigation menu on the left or click Connect from an applicable button to view the Integration drawer within. the Security Compliance section.

Step 2: Start the Okta Connection

On the Integrations page, find the Okta card under the "Cloud Services & Identity Access" (or "Identity Access & Cloud Security") section and click Connect.

Step 3: Enter Your Okta Domain

A setup window will appear, asking for your Okta Domain.

  1. In a separate browser tab, log in to your Okta Admin Console using your super administrator credentials.
  2. Find and copy your Okta Domain. It will look similar to https://yourinstance-123.abc.okta.com.
  3. Paste your domain into the "Your Okta Domain" field in Coalition Control and click Continue.

Step 4: Install the Coalition Control App in Okta

You will need to navigate to your Okta Admin Console to perform the necessary steps to add the Coalition Control app from the Okta App Catalog

  1. Sign your Okta Admin Console in a separate tab or simply by clicking the URL in Step 1 of the modal.
  2. Navigate to Applications > Applications.
  3. Click Browse App Catalog
  4. Search for “Coalition Control”
  5. Click Add Add Integration

Step 5: Grant Requested Permissions

Follow the prompts in Okta to authorize the connection.

  1. Review the read-only permissions being requested.
  2. Click "Install & Authorize" to grant the permissions and complete the installation.

Step 6: Enter Credentials in Coalition Control

Once the integration is installed in Okta, Okta will generate your credentials. You must copy these back into Coalition Control.

  1. After authorizing, Okta will show you a Client Secret and Client ID.
  2. Important: Copy the Client Secret immediately and save it somewhere secure. Okta will only show this value one time.
  3. Copy the Client ID from the integration's settings page in Okta.
  4. Paste the Your Client Secret and Your Client ID into the corresponding fields in the Coalition Control setup window.

Step 7: Finish the Connection

After entering both credentials, click Connect. You will see a "Congratulations!" message confirming the connection is complete. The Okta card on your Integrations page will now show a "Connected" status.

What Happens After I Connect Okta?

Once connected, Coalition Control will begin its first data sync. This initial sync may take several minutes to a few hours, depending on the size of your Okta instance.

After the sync is complete, you will see your Okta security and compliance data begin to populate in your Security Compliance for all active frameworks. The platform will automatically map this evidence to your compliance controls, saving you time and effort.

Frequently Asked Questions

Who can connect the Okta integration?

Only users with Account Admin permissions in Coalition Control can add and manage new integrations.

Is this connection secure?

Yes. The integration uses a secure API connection authorized through Okta. Coalition only ever requests read-only permissions and cannot make any changes to your Okta settings, users, or groups.

I lost my Client Secret before pasting it. What do I do?

Because Okta only shows the Client Secret once, you cannot recover it. You will need to go back to the API Service Integrations section in your Okta account, delete the "Coalition Control" integration, and re-add it to generate a new Client Secret and Client ID.

How do I disconnect the Okta integration?

Go to the Integrations page, find the Okta card, and click Manage. You will see an option to Disconnect the integration.

What scopes or permissions are utilized by Control?

We will only use the following read-only scopes:

  • okta.users.read
  • okta.policies.read
  • okta.roles.read
  • okta.logs.read
  • okta.apps.read
  • okta.groups.read

Related articles

Powered by Zendesk