Delegate realm management
Early Access release
By default, realms don't have an admin. To delegate realm management permission to a user in a realm, you must first create a custom admin role at the Okta org level and then assign the realm to that role. Users who have this custom admin role can then assign the realm during user creation. Delegated realm admins can also create or delete realms if they have All Realms and Manage Realms permissions assigned to them as a part of the resource set.
Before your begin
- Ensure that you're signed in as a super admin.
- You must have an existing realm. See Create realms.
Start the task
To delegate realm admin permissions, you must complete the following tasks:
-
Create a role. Be sure to assign the realm management permission.
-
Create a resource set. Add the realms that will be managed as part of the resource set.
-
Create an admin assignment using a resource set. Add the Realm Admin role assignment.