Getting Your Okta Credentials
To connect Okta with StackOne using OAuth 2.0, you’ll need your Okta domain and OAuth application credentials.
Log in to Okta
Log in to your Okta account at https://login.okta.com/
Find Your Okta Domain
Your Okta domain can be found in the URL when logged in to Okta.
- Given the URL
https://your-org.okta.com/app/UserHome, your domain isyour-org.okta.com - For preview environments, the domain may be
your-org.oktapreview.com
Navigate to Okta Admin Console
From your Okta homepage, click the Admin button in the top right corner.
Create an OAuth Application
Create an OAuth application to obtain your Client ID and Client Secret.
- In the Admin Console, navigate to Applications > Applications
- Click Create App Integration
- Select OIDC - OpenID Connect as the Sign-in method
- Select Web Application as the Application type
- Click Next
Configure Application Settings
Configure your OAuth application with the appropriate settings.
- Enter an App integration name (e.g., StackOne Integration)
- Check
Authorization CodeandRefresh Tokenboth under the Grant type - Set the Sign-in redirect URI to the callback URL provided by StackOne:
https://api.stackone.com/connect/oauth2/okta/callback - Under Assignments, select the appropriate access level for your organization
- Click Save
Copy Client Credentials
After saving, copy your OAuth credentials.
- Client ID is displayed on the application’s General tab
- Client Secret is also on the General tab (click the eye icon to reveal)
- Store these credentials securely as you’ll need them for the connection
Configure API Scopes
Navigate to the Okta API Scopes tab.
Grant the required OAuth scopes for this integration.
See Okta OAuth 2.0 Scopes for details.
When linking your account, also include the offline_access and openid scopes in the list of scopes.
Realm Access Configuration
Realm scopes require an Okta Identity Governance, Secure Partner Access, or Advanced Directory Management subscription.
Linking the Account from the Hub
Navigate to the Hub
Fill out the fields
- Okta Domain
- Client ID
- Client Secret
- Scopes (Optional)
- Event Hook Name (Optional)
If the account linking is successful, you will see the newly linked account in your Accounts page.