To answer your question: Yes.
When you are creating an enterprise application (for external Identity Providers) you will be able to manage who can use the app by assigning users or groups to the application.
Make Azure Active Directory an identity provider (with Okta as example)
After adding Okta as an Azure AD Enterprise Application, assign certain users or groups (population) to the app and only they will be able to use Azure AD SSO.
-----------------------
If this is helpful please mark as correct answer.