Okta - How to Configure OAuth 2.0 for onetool


In order to enable your okta integration with onetool, you must have access to an Okta account in your organisation that has access to “Add and configure apps”. Refer to Okta’s Administrators guide for a list of admin roles and their rights.

Supported Features

The Okta/onetool OAuth 2.0 integration (configured with OIDC) currently supports the following features:

  • SP-initiated SSO

  • Onboard new Users

  • Get all Users

  • Update User Attributes and Statuses

  • Delete Users

For more information on the listed features, visit the Okta Glossary.


Step 1. Enable OIDC API integration in Okta

  1. Log into Okta as an administrator that possesses the rights to “Add and configure apps” in the admin dashboard.

  2. Add the onetool application.

  3. Enter an application label and select any additional settings you desire.

  4. Click ‘Done’ to add the application for your organization.

  5. Once the application is added, ensure that the required Okta API Scopes are granted. These are ‘okta.roles.manage’ and ‘okta.users.manage’.

  6. Go to ‘Assignments’ and ensure that the admin account that you will authenticate to Okta with is assigned to the onetool app.

  7. Go to ‘General’ and take note of the ‘Okta Domain’ under the ‘General Settings’ section. You will need to note down the prefix before ‘’. This is the ‘Workspace’ value that you will need to enter in the onetool application.

Step 2. Connect Okta to onetool

  1. Login to your onetool account at

  2. Select ‘Okta’ from the ‘Integrations menu’. Enter your workspace and click ‘connect’.

  3. You will be redirected to Okta’s login page where you can enter your credentials for the Admin account that was assigned to the onetool application in the Okta admin dashboard.

  4. Once successfully logged in, onetool will pull all the relevant data to be shown in your onetool workspace.

Was this article helpful?