Push groups from Okta to Active Directory
You can use group push to copy Okta groups and their members to Active Directory (AD). When you push groups to AD, Okta is the profile source for group membership.
When you use group push to link an Okta group to an AD group, the existing group description is replaced by the fully qualified domain name (FQDN).
- In the Admin Console, go to Directory > Directory Integrations.
- Select an AD instance and click the Push Groups tab.
- To add a group to group push:
Click Push Groups and select Find groups by name.
Enter the name of the group that you want to add to group push in the Find group field.
Select an Organizational Unit (OU) to push the group to in the Push group to the following OU area.
- If the group doesn’t currently exist, select Create Group in the No Match Column to create the group and then select the group scope and group type, or select Link Group in the No Match Column and select an existing group.
Click Save or Save & Add Another if you want to add another group to group push.
- In the Push Status column, click Activate group push for the group you added in step 3.