Platform
Integrations
Identity Providers
Okta

Integrating Okta with Nordstellar Platform

This guide will walk you through the steps to set up a secure, one-way synchronization of your user directory from Okta to Nordstellar. This ensures that your employee list on Nordstellar is always up-to-date with your Okta directory.

Prerequisites

To complete this setup, you will need:

  • Administrator access to your Okta organization.

  • Permissions to generate API Tokens in Okta.

Step 1: Configure Your Okta Organization

This step involves generating a secure API token and identifying your Okta Organization URL, which our platform will use to securely connect to your Okta instance.

  1. Log in to your Okta Admin Console:

    • Open your web browser and navigate to your Okta Admin Console URL (e.g., https://yourcompany-admin.okta.com).

    • Sign in with your administrator credentials.

  2. Generate an API Token:

    • In the Okta Admin Console, navigate to Security > API.

    • Go to the Tokens tab.

    • Click Create Token.

    • Give your token a descriptive name (e.g., Nordstellar_Integration_Token).

    • Click Create Token.

    đź’ˇ

    IMPORTANT: The token value will be displayed only once. Copy this token immediately and store it securely. You will need to paste this into the Nordstellar Platform. If you lose it, you'll need to revoke it and create a new one.

    • Permissions: Ensure the administrator account used to create this token has the necessary permissions to read users (e.g., "Okta Administrator" or a custom role with okta.users.read and okta.users.read.self permissions).

  3. Find Your Okta Organization URL:

    • While logged into your Okta Admin Console, look at the URL in your browser's address bar.

    • Your Okta Organization URL is typically the base URL of your Okta instance, excluding the -admin part.

      • Example: If your Admin Console URL is https://yourcompany-admin.okta.com/admin/dashboard, your Okta Organization URL for API calls is https://yourcompany.okta.com.

      • It might also be https://yourcompany.oktapreview.com for sandbox environments or https://yourcompany.okta-emea.com for EMEA regions.

    • Copy this full URL. You will need to paste this into the Nordstellar Platform.

Step 2: Configure on Nordstellar Platform

Now that you've completed the setup in Okta, return to the Nordstellar Platform to finalize the integration.

  1. Navigate to Integration Settings:

    • On the Nordstellar Platform, go to the Settings section.

    • In the right-side menu, under the Connect section, click Integrations.

    • Click Connect on the Okta card.

  2. Enter Okta Details:

    • You will find fields to enter your Access Token and the Okta Organization URL.

    • Access Token: Paste the API token you generated in Step 1, point 2.

    • Okta Organization URL: Paste the full URL you found in Step 1, point 3 (e.g., https://yourcompany.okta.com).

  3. Test Connection:

    • Click the "Test Connection and Continue" button.

    • Our platform will attempt to make a request to Okta using the provided details.

    • Success: If the connection is successful, you will receive a confirmation message.

    • Failure: If the connection fails, an error message will be displayed. Please refer to the troubleshooting section below.

  4. Save Configuration:

    • Once the connection test is successful, the platform will automatically begin daily user synchronization.

(Optional) Disable Autodiscovery for Your Domain

By default, once integration with your chosen IDP is enabled, Nordstellar will sync users from two sources—unless you specifically toggled off Autodiscovery when adding the domain to your watchlist:

  • Nordstellar Autodiscovery: Detects emails associated with your added domains.
  • Your IDP: Syncs verified, current employee accounts from Okta.

If you prefer to use only your IDP as the source of users, you can disable Autodiscovery for specific domains at any time.

To turn off Autodiscovery for a domain:

  1. Go to the Asset List section in Nordstellar.
  2. Select the Domains tab.
  3. Find the domain you want to update and click the three dots (...) next to it.
  4. Click on Autodiscovery.
  5. In the modal that appears, toggle off Autodiscovery.
  6. Click Save.

This ensures that only users from your IDP are monitored on the platform.

Troubleshooting

If your connection test fails, please review the following common issues:

  • Okta Connection Failed:

    • Organization URL: Ensure the URL is correct (e.g., https://yourcompany.okta.com) and does not include /admin.

    • Access Token: Verify that the Okta API token is valid, has not expired, and has the necessary permissions (e.g., okta.users.read, okta.groups.read for listing users/groups).

    • Network/Firewall: Confirm there are no network restrictions preventing access to your Okta domain.

If you've checked these details and the problem persists, please contact your IT administrator or Nordstellar support for assistance.

By following these steps, your Nordstellar Platform will be successfully integrated with your Okta organization, ensuring your user data is always current.

Google WorkspaceOverview
NordStellar © 2026Privacy Policy