...
First Name
Last Name
Email
Profile Picture
Title
Language
Location
Manager
Department (to be used for “Team” “Primary Team” within Learn Amp)
Custom field fields (only if the custom field exists in Learn Amp)
Setup
Sign in to your okta account: https://www.okta.com
In the left hand side navigation, expand Applications and click Applications link below
Click a button Create App Integration
In the modal which would pop up, from available options, select
...
option OIDC - OpenID Connect
A second list of options would appear. Please select Web Application
Click button Next
In the General Settings panel, fill in App Integration Name
In the Client acting on behalf of a user make sure all 3 options are checked:Authorization CodeRefresh TokenImplicit (hybrid)
As Sign-in redirect URIs provide:
https://<subdomain>.learnamp.com/en-US/okta/auth_callbackClick Add URI and in Sign-in redirect URIs field fill:
https://<subdomain>.learnamp.com/users/auth/okta/callbackIn the Assignments select an option, which fits you the best
Click Save
From Client Credentials panel, copy value from Client ID and paste in the corresponding field above
From Client Credentials panel, copy value from Client secrent and paste in the corresponding field above
From General Settings panel, copy value from Okta domain and paste in the field *API URL above
In the Left Hand Side Menu, expand Security tab, and click API link
In the tabs on the top, click Tokens
Click Create Token
In the modal which would pop up, fill in What do you want your token to be named? field
Click Create Token
Copy value in Token Value and paste in to the field API Token above
Save the form above
When the page reloads, click the button Connect to Okta
Congratulations! The integration is now finalised!
Please follow these steps to enable instant updates (Event Hooks):
In the Left Hand Side Menu, expand Workflow and click Event Hooks
Click Create Event Hook button
Fill in Name
Fill in URL with:
https://<subdomain>.learnamp.com/webhooks/oktaFill in Authentication field with:
AuthorizationFill in Authentication secret with:
<secret-from-learnamp-okta-setup-page>Please add the following for Subscribe to events:
User assigned to app
User added to group
User's Okta profile updated
User unassigned from app
User deactivated
User removed from group
User reactivated
User deleted
Click Save & Continue
...
FAQ’s
How do I make sure the users Sync?
Users are synced at least once every 24 hours at 3am GMT, but will be 'immediately'* synced if...
...
Note: Immediate means that the action will be immediately sent to the queue, sometimes at time of peak traffic there may be minor delays.
Setting up teams and managersHow are managers allocated when using OKTA?
Typically within Learn Amp the manager is set by the users 'Primary Team' (the teams manager, becomes their manager). However for this integration, the 'Primary Team' manager will be overridden with the individuals manager within Okta. This means that teams will not have a manager, so you may wish to set these up as a sensible default if the manager field is missing within Okta.
...
In the future, to improve this we will give an option on the integration on how the manager will be handled by the system. We will also:
Set manager at an individual level: Directly match the data in Okta, by setting a manager on an individual using our 'Override manager' setting.
Set manager at a team level: When the first user is added to a team, take their manager as the manager of that team.
When will users be invited to join Learn Amp?
During your implementation period, the integration should be set up with the option “do not invite automatically” enabled to prevent users gaining access to the platform before it has been launched. Post launch, this feature will
disabled and new users will receive their email automatically shortly after their account is created in Learn Amp regardless of their start date.
Please let us know if you need any further help or have any suggestions for improvements to this article: support@learnamp.com