Add a certificate to an Active Directory connection
Note:
End of sale announcement
Effective May 1, 2026, Okta will no longer sell or renew Advanced Server Access. Existing customers must migrate to Okta Privileged Access within one year of their next scheduled renewal date to maintain service.
Read the FAQ and learn more about Okta Privileged Access.
Adding a certificate allows connections to an Active Directory (AD) server without a password. Users must still sign in to their Okta account before connecting to a server.
- Open the Advanced Server Access dashboard.
- In the side menu, click Connections.
- Identify an existing AD connection.
- Click
, and then click Edit. The Update Active Directory Connection window opens. - In the Passwordless Authentication section, click Use an existing certificate.
- Select an existing certificate.
- Click Update.
Related topics