Okta connector
Okta provides tools to manage access and authentication based on identity. You can create, update, list, and delete users, add users to groups, assign users to apps, and make custom calls to the Okta API.
- Authorize your Okta account
- Revoke Okta tokens
- Okta connector event cards
- Okta connector action cards
Authorize your Okta account
When you add an Okta card to your flow, you'll be asked to authorize an account from your Okta org. See Authorization.
Revoke Okta tokens
When you've deleted a user or a connection to your Okta org, the connector revokes all associated access tokens. You don't have to delete the tokens manually. See Revoke Token.
Guidance for Okta connector
Refer to this information for guidance and best practices when using the Okta connector in your flows. See Guidance for Okta connector

For information about the impact of Okta connector cards on rate limits for your environment, see Workflows system limits.
Okta connector event cards
Event |
Description |
---|---|
Access Certification Decision Submitted | Trigger an Okta flow when a decision on the access to a resource is made in Okta. |
Triggers a flow when an access request is created in Okta. | |
Triggers a flow when an access request is resolved in Okta. | |
API Token Created | Trigger a flow when an API token is created in Okta. |
API Token Revoked | Trigger a flow when an API token is revoked in Okta. |
Application Activated | Trigger a flow when an application is activated in Okta. |
Application Created | Trigger a flow when an application is created in Okta. |
Application Deactivated | Trigger a flow when an application is deactivated in Okta. |
Application Deleted | Trigger a flow when an application is deleted in Okta. |
Application Updated | Trigger a flow when an application is updated in Okta. |
Authenticator Activated | Trigger a flow when an authenticator is activated in Okta. |
Authenticator Deactivated | Trigger a flow when an authenticator is deactivated in Okta. |
Device Activated | Trigger a flow when a device is activated for Okta Verify. |
Device Added to User | Trigger a flow when a device is added to user for Okta Verify. |
Device Deactivated | Trigger a flow when a device is deactivated for Okta Verify. |
Device Deleted | Trigger a flow when a device is deleted from Okta Verify. |
Device Enrolled | Trigger a flow when a new device is registered successfully for Okta Verify. |
Device Suspended | Trigger a flow when a device is suspended for Okta Verify. |
Device Unsuspended | Trigger a flow when a device is unsuspended for Okta Verify. |
Group Created | Trigger a flow when a group is successfully created in Okta. |
Group Deleted | Trigger a flow when a group is successfully deleted in Okta. |
Group Privilege Granted | Trigger a flow when a group admin privileges is granted in Okta. |
Group Privilege Revoked | Trigger a flow when a group admin privileges is revoked in Okta. |
Group Profile Updated | Trigger a flow when Okta group profile is updated. |
Group Push Failed | Trigger a flow when a group push in Okta fails. |
Import Group Created | Trigger a flow when a group is created by an import process in Okta. |
Import Group Deleted | Trigger a flow when a group is deleted by an import process in Okta. |
Import Process Completed | Trigger a flow when an import process is completed in Okta. |
Import Roadblock | Trigger a flow when the percentage of unassigned application exceeds the specified threshold safeguard during user import in Okta. |
Import Started | Trigger a flow when an import process is started in Okta. |
Policy Activated | Trigger a flow when a policy is activated in Okta. |
Phone Verification Call Sent | Trigger a flow when a user signs in and a verification phone call is sent in Okta. |
Phone Verification SMS Sent | Trigger a flow when a user signs in and a verification SMS is sent in Okta. |
Policy Deactivated | Trigger a flow when a policy is deactivated in Okta. |
Policy Rule Activated | Trigger a flow when a policy rule is activated in Okta. |
Policy Rule Added | Trigger a flow when a policy rule is added in Okta. |
Policy Rule Deactivated | Trigger a flow when a policy rule is deactivated in Okta. |
Policy Rule Deleted | Trigger a flow when a policy rule is deleted in Okta. |
Policy Rule Updated | Trigger a flow when a policy rule is updated in Okta. |
Policy Updated | Trigger a flow when a policy rule is updated in Okta. |
Trigger a flow when an OAuth2 app is granted consent by a user in Okta. |
|
Org Rate Limit Warning | Trigger a flow when an org-wide rate limit is approaching the maximum limit in Okta. |
Org Rate Limit Violation | Trigger a flow when an org-wide rate limit is exceeded in Okta. |
Suspicious Activity Reported | Trigger a flow when suspicious activity is reported in Okta. |
Sync User in External Application | Trigger a flow when an admin syncs users from an external application to Okta. |
User Account Locked | Trigger a flow when a user account auto-locks in Okta. |
User Account Unlocked | Trigger a flow when a user account auto-unlocks in Okta. |
User Activated | Trigger a flow when a user is activated in Okta. |
User Added to Group | Trigger a flow when a user is assigned to a group in Okta. |
User App Password Changed | Trigger a flow when a user's app password is changed. |
User Assigned to Application | Trigger a flow when a user is assigned to an application in Okta. |
User Created | Trigger a flow when a user is created in Okta. |
User Deactivated | Trigger a flow when a user is deactivated in Okta. |
User Deleted | Trigger a flow when a user is deleted in Okta. |
User MFA | Trigger a flow when a user is authenticated through multifactor authentication (MFA). |
User MFA Factor Activated | Trigger a flow when a user activates a new multifactor authentication (MFA) factor. |
User MFA Factor Deactivated | Trigger a flow when a user deactivates a multifactor authentication (MFA) factor. |
User MFA Factor Reset All | Trigger a flow when all of a user's multifactor authentication (MFA) factors are reset. |
User MFA Factor Suspended | Trigger a flow when a user suspends a multifactor authentication (MFA) factor in Okta. |
User MFA Factor Unsuspended | Trigger a flow when a user unsuspends multifactor authentication (MFA) factor in Okta. |
User Privilege Granted | Trigger a flow when a user's admin privilege granted in Okta. |
User Privilege Revoked | Trigger a flow when a user's admin privilege revoked in Okta. |
User Okta Password Reset by an Admin | Trigger a flow when an user's Okta password is reset by an Okta admin. |
User Okta Password Updated | Trigger a flow when an user's Okta password is updated. |
User Okta Profile Updated | Trigger a flow when an user's Okta profile is updated. |
User Password Imported | Trigger a flow when an user's password is imported in Okta. |
User Reactivated | Trigger a flow when a user is reactivated in Okta. |
User Removed from Group | Trigger a flow when a user is removed from a group in Okta. |
User Signed In Attempt | Trigger a flow when a user signs into Okta. |
User Signed Out | Trigger a flow when a user signs out of Okta. |
User Suspended | Trigger a flow when a user is suspended in Okta. |
User Unassigned from Application | Trigger a flow when a user is unassigned from an application in Okta. |
User Unsuspended | Trigger a flow when a user is unsuspended in Okta. |
Okta connector action cards
Action |
Description |
---|---|
Activate an Okta application. |
|
Activate Group Rule | Activate a specific group rule by ID from your organization. |
Activate User | Activate an Okta user by ID or username. |
Add User to Group | Add a new Okta user to a group. |
Assign Group to Application | Assign a group to an application in Okta. |
Assign User to Application for SSO | Assign a user without a profile to an app for SSO in Okta. |
Assign User to Application for SSO and Provisioning | Assign a user to an app with credentials and an app-specific profile. |
Bulk User Import | Update an in progress import session in Okta by creating or updating users in Okta. |
Clear User Sessions | Remove all active identity provider sessions. |
Create Group | Create a new group in Okta. |
Create Group Rule | Create a group rule to dynamically add users to the specified group if they match specified condition values. |
Create Import Session | Create an import session in Okta. |
Create User | Create a new user in Okta. |
Custom API Action | Use Custom API Action to make an authenticated request to the Okta API. |
Deactivate an Okta application. |
|
Deactivate Group Rule | Deactivate a specific group rule by ID from your organization. |
Deactivate User | Deactivate a user in Okta. |
Delete an Okta application. |
|
Delete Group | Remove a group from your Okta organization. |
Delete Group Rule | Remove a specific group rule by ID from your organization. |
Delete Import Session | Delete an import session in Okta. |
Delete Linked Object Value | For the associated user specified by ID and the relationship specified by primary name, delete any existing relationship between the associated and primary user in Okta. |
Delete User | Delete a deactivated Okta user by ID. |
Find Users | Search Okta users with a query. |
Get Assigned User for Application | Fetch a specific user assignment for an app by ID. |
Get Associated Linked Object Values | For the primary user specified by ID, return the list of user IDs and self links for the associated users in the relationship specified by associated names in Okta. |
Get Primary Linked Object Value | For the associated user specified by ID, returns the user ID and self link for the primary user in the relationship specified by the primary name in Okta. |
Get Users Groups | Retrieve an Okta user's current group memberships. |
List Applications Assigned to Group | List applications assigned to a group in Okta. |
List Applications Assigned to User | List applications assigned to a user in Okta. |
List Groups Assigned to Application | List group assignments for an application in Okta. |
List Group Members | List the members of an Okta group. |
Lists all active import sessions for an identity source. |
|
List Users Assigned to Application | List all assigned users for an app. |
List Users with Filter | List users in Okta based on the filter provided. |
List Users With Search | Search for users based on the properties specified in the search parameter. |
Map Profile Source Attributes | Create a list of Okta users expected by the Okta API. |
Read Application | List an application in Okta. |
Read Assigned Group for Application | Read an application group assignment in Okta. |
Read Group | Read an Okta group's information by ID. |
Read Group Rule | Read an Okta group's information by ID. |
Read Import Session | Read information about an import session in Okta. |
Read User | Read an Okta user's system information and profile properties by ID or username. |
Remove Group from Application | Remove a group from application. |
Remove User from Application | Remove a user from application. |
Remove User from Group | Remove an Okta user from group. |
Reset Password | Reset a user’s password in Okta. |
Search Applications | Search for applications based on application Name or Label in Okta. |
Search Groups | Search groups with a query. |
Search Group Rules | Search all group rules for your organization. |
Search System Logs | Search for log events from your organization's system log in Okta. |
Set Linked Object Value for Primary | Set the associated user and the primary user specified by ID for the relationship specified by primary name in Okta. |
Suspend User | Suspend an Okta user by ID or username. |
Trigger Import Session | Trigger an import session in Okta that is ready for processing. |
Unsuspend User | Unsuspend an Okta user by ID or username. |
Update Application Credentials for an Assigned User | Update an app user's credentials. |
Update Application Profile for an Assigned User | Update an app user's profile. |
Update Group | Update the profile for a group in Okta. |
Update Group Rule | Update a group rule in Okta. |
Update User | Update an Okta user's system information and profile properties by ID or username. |