OKTA authorize Azure resources without AAD

Anonymous
2023-08-04T05:12:58.1+00:00

Background:

As per customer, for Authentication and Authorization  they were  planning to replace Azure Active Directory with OKTA as an Identity Provider.

Queries:

1.Can we assign managed identity to each service if we use Okta ? 

2.If we use Okta, can we use RBAC to control access between Azure services and user groups. If yes, can we use existing roles defined in Azure or do we need to setup Role and permission in Okta ? 

3.How can we achieve azure resources Authorization if we go with OKTA Provided Token?

Microsoft Security | Microsoft Graph
{count} votes

1 answer

Sort by: Most helpful
  1. JimmySalian-2011 42,496 Reputation points
    2023-08-04T10:46:06.6+00:00

    Hi Ashish,

    Ideally this should be with Okta technical support and they should able to guide however check this thread - https://www.reddit.com/r/okta/comments/utxswa/migrating_idp_from_azure_ad_to_okta/?rdt=56864&onetap_auto=true

    Also check this info - https://developer.okta.com/docs/reference/architecture-center/directory-coexistence/lab-azure-ad/

    Also carry out test for one of the applications and some test users and groups so you can confident of the migration process - Hope this helps.

    JS

    ==

    Please Accept the answer if the information helped you. This will help us and others in the community as well.

    0 comments No comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.