Get started with Active Directory accounts

Early Access release

Follow this sequence of configuration tasks to start managing your Active Directory (AD) accounts in Okta Privileged Access.

Before you begin

  • Review requirements and limitations and complete the required steps.

  • You must have the super admin role to complete Active Directory agent steps in the Okta Admin Console.

  • You must have a resource admin role to perform AD set up in Okta Privileged Access.

  • You must have a security admin role to modify policies granting access to AD accounts in Okta Privileged Access.

Set up AD accounts

  1. Install the Okta AD agent.

  2. Grant Okta Active Directory (AD) agent password management permissions.

  3. Optional. Create resource groups and projects for AD accounts.

  4. Optional. Configure project settings.

  5. Activate AD domains in Okta Privileged Access.

  6. Set up assignment rules in Okta Privileged Access.

  7. In the Okta Admin Console, specify the organizational units that contain privileged accounts that are to be managed by Okta Privileged Access. See step five in Install the Okta Active Directory agent.

  8. Set up policy in Okta Privileged Access.

  9. Add rules to grant access to AD accounts.

Related topics

Resource assignment

Projects

Security policy

Okta Privileged Access user guide