Install the Okta Provisioning Agent

Before configuring on-premises provisioning for an app, install the Linux or Windows Okta Provisioning Agent. You can connect your Okta Provisioning Agent to multiple on-premises apps, but you must provide a unique SCIM server URL for each app. Each agent has a corresponding configuration file, which you can optionally edit after installation. See Agent configuration file.

• Linux
• Windows

Linux

1. In the Admin Console, go to SettingsDownloads.

2. Click Download Latest for Okta Provisioning Agent (x64 RPM).
3. Optional. Verify the integrity of the file that you downloaded. Compare its file hash and file size to those listed on the Downloads page.

   The following commands use OktaProvisioningAgent.rpm as a placeholder. Replace it with the name of the file that you downloaded (for example, OktaProvisioningAgent-03.00.00-b2cbcd6.x86_64.rpm).

   1. Generate the SHA-512 file hash for the Okta Provisioning Agent by running the following command:sha512sum OktaProvisioningAgent.rpm
   2. List the size of the Okta Provisioning Agent file:ls -l OktaProvisioningAgent.rpm
   3. Return to the Downloads page. Confirm that the file hash and file size information for your downloaded file match the information that's displayed for Okta Provisioning Agent (x64 RPM).
4. Copy the Okta Provisioning Agent file to a scratch directory, and then cd to that directory.
5. Install the agent by entering the following, replacing OktaProvisioningAgent.rpm with the name of your downloaded file: sudo yum localinstall OktaProvisioningAgent.rpm
6. When you're prompted to continue, enter y.
7. Enable TLS 1.2.
8. Run the following script:sudo /opt/OktaProvisioningAgent/configure_agent.sh
9. Enter the URL of your org at the prompt (for example: https://mycompany.okta.com).
10. If using a proxy server, enter y and follow the prompts to provide your proxy details. Otherwise, enter n.
11. The configuration script prompts you to navigate to a specified activation URL. Open that URL in your browser.
12. Enter the activation code from the configuration script and click Next.
13. Click Allow Access to register the agent.
14. Return to the command line. After you receive a successful configuration message, enter the following command as root:systemctl start OktaProvisioningAgent.service
15. To verify that the Okta Provisioning Agent is running, run the following command with root privileges:systemctl status OktaProvisioningAgent.service

Windows

1. In the Admin Console, go to SettingsDownloads.

2. Click Download Latest for Okta Provisioning Agent (Windows x64 EXE).
3. Optional. Verify the integrity of the file that you downloaded. Compare its file hash and file size to those listed on the Downloads page.

   The following commands use OktaProvisioningAgent.exe as a placeholder. Replace it with the name of the file that you downloaded (for example, OktaProvisioningAgent-03.00.00-b2cbcd6.x86_64.exe)

   1. Generate the SHA-512 file hash for the Okta Provisioning Agent by running the following from a command prompt: CertUtil -hashfile OktaProvisioningAgent.exe SHA512
   2. Browse to the location where you downloaded the Okta Provisioning Agent, right-click the file, select Properties, record the value displayed in the Size field, and click OK.
   3. Return to the Downloads page. Confirm that the file hash and file size information for your downloaded file match the information that's displayed for Okta Provisioning Agent (Windows x64 EXE).
4. Launch the installer, and then click Next.
5. In the License Agreement dialog box, click Next.
6. Optional. Change the installation folder, and then click Install.
7. Optional. Choose which Okta environment in which to run the agent. The default environment is Production.
8. Enter your Okta Customer Domain URL, and then click Next.
9. Optional. If required by your environment, select Use proxy server and enter your proxy server information.
10. Click Next.
11. Open the specified URL in your browser, enter the activation code, and then click Next.
12. In your browser, sign in to your org.
13. Follow the prompt to authenticate with Okta (for example, enter a code from Okta Verify). Click Verify.
14. Grant permission to access the Okta API by clicking Allow Access. This registers the agent with Okta.
15. Return to the installer, and then click Finish.
16. Sign in to Okta.
17. Enable TLS 1.2.
18. In the Admin Console, select Agents. Verify that the configured Okta Provisioning Agent is in the list.

Next steps

Create an instance of your on-premises app in Okta