SOTI Pulse Logo

Okta users integration in Soti MobiControl

P
Pedro

Hi 

As we know, in MobiControl, there's an option to assign both a user from Identity or an LDAP (AzureAD, Okta, etc). For our purposes, we use Okta. 

We have managed to create an application in Okta to create the SAML for authentication/authorization. This part is fine because we can pull some users from Okta. 

And that is precisely the problem. We cannot find all of the Okta users when trying to assign a user to a device from the MobiControl Dashboard.

Is there any troubleshooting I can do there? In my opinion, the integration is done correctly, otherwise I wouldn't be able to find anyone. 

Thanks a lot

mobicontrol users ldap okta
3 years ago
SOTI MobiControl
ANSWERS
MB
Marcus Breitenthaler
3 years ago

Hi Pedro,

it seems that it is supported with Version 15.5.*

"SOTI MobiControl can be integrated with Identity Providers (IdPs) such as Okta, OneLogin or any other IdP which supports the SAML 2.0 specification."

https://www.soti.net/mc/help/v15.5/en/console/reference/dialogs/globalsettings/identityprovidermanager.html?hl=okta

I
ICMOD@SOTI
3 years ago

Hi Pedro,

Thanks for your post!

The users Okta users you are able to see in MobiControl are they from a certain group in Okta? Or different groups?

Regards,

Technical Support | SOTI Inc. |1.905.624.9828 | support@soti.net | www.soti.net |

P
Pedro
3 years ago

Hi ! 

Thanks for the reply

That correct. In OKTA, which is our main user base system, we gathered all our "Employees" Okta group, and map it to a "group" name, which is what we pass then onto Soti as shown in the picture

Then in Mobicontrol , all the Group mapping etc, we do it in this way:

As a result, what we can do only is to pull the users , which we think they come from Okta, but its a coincidence that they are also the Soti Identity Users. And not any user, but only those with Admin privileges, because we cant even pull all of the Soti ID users anyway. As shown below :

The users above are all Soti identity Administrators, but also they are in the OKTA group "Employees", so we don't know what to think. If Okta works for our purpose at all

Thanks

P
Pedro
3 years ago

As an additional comment from the previous one:

Basically what we want to achieve with all of this, is to map the owner of a device into the "user details" panel in a specific device, and use OKTA as the IdP source. In other words, to know who has what device. 

I
ICMOD@SOTI
3 years ago

Hello Pedro,

Here is a helpful video I found walking you through the OKTA Integration:

SOTI Identity: OKTA IdP Integration (vidyard.com)

If you are still experiencing issues with the integration please contact SOTI Support (support@soti.net) to open a new case to troubleshoot this further.

Regards,

Technical Support | SOTI Inc. |1.905.624.9828 | support@soti.net | www.soti.net |

Similar Discussions