Plan your LDAP integration
You use the Okta LDAPLightweight Directory Access Protocol (LDAP) is a lightweight client-server protocol for accessing directory services, specifically X.500-based directory services. LDAP runs over TCP/IP or other connection oriented transfer services. agentA software agent is a lightweight program that runs as a service outside of Okta. It is typically installed behind a firewall and allows Okta to tunnel communication between an on-premises service and Okta's cloud service. Okta employs several agent types: Active Directory, LDAP, RADIUS, RSA, Active Directory Password Sync, and IWA. For example, users can install multiple Active Directory agents to ensure that the integration is robust and highly available across geographic locations. to integrate Okta with your LDAP instance. LDAP integration lets end usersEnd users are people in your org without administrative control. They can authenticate into apps from the icons on their My Applications home page, but they are provisioned, deprovisioned, assigned, and managed by admins. authenticate to Okta using their LDAP credentials without replicating those credentials into the cloud. LDAP integration helps your organization leverage its existing identity directory investment and controls access to Okta-protected resources.
- Supported LDAP directories
- LDAP integration features
- LDAP integration known limitations
- LDAP incremental imports and password management