Install and configure the Okta Active Directory agent

You use the Okta AD agentA software agent is a lightweight program that runs as a service outside of Okta. It is typically installed behind a firewall and allows Okta to tunnel communication between an on-premises service and Okta's cloud service. Okta employs several agent types: Active Directory, LDAP, RADIUS, RSA, Active Directory Password Sync, and IWA. For example, users can install multiple Active Directory agents to ensure that the integration is robust and highly available across geographic locations. to integrate Okta with your Active DirectoryActive Directory (AD) is a directory service that Microsoft developed for the Windows domain networks. It is included in most Windows Server operating systems as a set of processes and services. Initially, Active Directory was only in charge of centralized domain management. (AD) instance. You can change the settings as the needs of your orgThe Okta container that represents a real-world organization. evolve.

Before you install the Okta AD agent, remove duplicate entries and correct formatting issues. Correcting issues before you begin speeds the integration and import processes.

When you complete the AD integration, AD is considered an Okta appAn abbreviation of application. Essentially, it is a web-based site used to perform any number of specific tasks, and requires authentication from end users by signing in. and app admins have administrator permissions.



The AD app user profile schema requires both the first and last name. You can create an Okta mastered user without a first or last name, but you cannot import an AD user into Okta without a first and last name.

Known issues


Install the Okta Active Directory (AD) agent

Complete these procedures in the order they are provided.

Optional tasks

What's next?

After you have installed the Okta AD agent and completed the initial integration, you'll want to perform the following activities: