Breadcrumbs

Okta: Set Up FileCloud Integration for SSO Group/User Import

To configure FileCloud/Okta integration in Okta for SSO group/user import:

  1. Log in to the Okta admin portal, and navigate to Applications > Applications.

  2. Click Create App Integration.

    image-20251111-154107.png


    A list of sign-in methods opens.

  3. Choose API Services, and click Next.

    image-20251111-154135.png

  4. Enter a name for the app integration and click Save.

    image-20251111-154145.png

  5. Your new app opens to the General tab. Click Edit

    image-20251111-154153.png

  6. For Client authentication, select Public key / Private key.

  7. For Configuration, choose Save keys in Okta.

  8. Click Add key.

    image-20251111-154200.png


    The Add a public key window opens.

  9. Paste in your own key or click Generate new key.

  10. If you click Generate new key, under Private key - Copy this! click PEM, and then click Copy to clipboard, and save the copied key to a text file with a .pem extension so you can upload it to FileCloud. 
    If you do not save as a .pem file, you will not be able to upload the private key to FileCloud.

    image-20251111-154207.png

  11. Click Done.

  12. Click Save, or your public key will not be saved.

    image-20251111-154217.png


    Once you click Save, your key should show a Status of Active and a Created date.

    image-20251111-154326.png


  13. Remain on the General tab. Scroll down to General Settings, and click Edit

    image-20251111-154413.png

  14. Uncheck Proof of possession, and click Save.

    image-20251111-154236.png


    Click the Okta API Scopes tab.

    image-20251111-154249.png

  15. Scroll down to okta.groups.read and click Grant to enable FileCloud to read Okta groups.

    image-20251111-154429.png


    You are prompted to grant okta.groups.read scope to the app.

  16. Click Grant Access.

    image-20251111-154441.png


    Now the row for okta.groups.read should appear as:

    image-20251111-154454.png

  17. Scroll down to okta.users.read and click Grant Access to enable FileCloud to read Okta users. 
    The Grant Okta API Scope notification does not appear again.

    image-20251111-154535.png

  18. Click the Admin roles tab.

  19. Click Edit assignments.

    image-20251111-154547.png


  20. In Role, choose a role that should have access to Okta groups and users, or choose Read-only Administrator.

  21. Click Save Changes.


    You have finished setting up integration on the Okta side. 
    Now you have the values you need to set up integration on the FileCloud side: the domain in the user drop-down box, the Client ID on the General tab, and the .pem keyfile that you saved.

    image-20251111-154607.png


    To enter the values into the FileCloud side, see SSO API: Configure Import of SSO Groups and Users.