Netskope Help

Configure Okta SCIM Integration to Onboard Users to Netskope
  1. Log in to Okta console.

    image7.png
  2. Click Admin to go to the Admin console.

    image8.png
  3. Click Developer Console and select Classic UI.

    image9.png
  4. From the menu select Applications > Applications.

    image10.png
  5. Click Add Application.

    image11.png
  6. In the search bar, enter Netskope. This will list Netskope apps. Select Netskope User Enrollment for Provisioning users.

    image1.png
  7. Click Add.

    image2.png
  8. Enter an Application label, Netskope SCIM (example only). Enter Subdomain (example explained below).

    image13.png
  9. Go to the Sign-on tab settings and click Edit.

    image3.png
  10. Under Advanced Sign-On Settings, enter the Org ID which you copied from the Netskope Tenant. Under Application Username Format, select Email, and click Save.

    image4.png
  11. Next select Provisioning > Configure API Integration.

    image16.png
  12. Check the box to Enable API Integration.

    Enter Base URL & API Token obtained from Netskope tenant earlier and Test API Credentials.

    image17.png
  13. This will display Netskope was verified successfully. Click Save.

    image18.png
  14. After saving the API Integration settings, two other options will be listed. Select To OKTA and check Schedule Import is set to Never.

    image19.png
  15. Next select To App and Enable these three options: Create Users, Update User Attributes, and Deactivate Users. Click Save.

    image20.png

    Note

    You can select Okta Users or Okta Groups. Selecting groups would only sync members within the group and not the group itself.

  16. Next select Assignments (tab) to assign users to sync to the tenant.

    image21.png
  17. To sync Okta groups, go to Push Groups (tab) and Search for the group > add group > set to “Create Group” > Save.

    This will start Pushing the group to Netskope tenant and then mark it as Active in Okta.

    image22.png
    image23.png
    image24.png
  18. You can view the logs to check if the sync was successfully under Reports > System Logs.

    image25.png
  19. Check Okta users in the Netskope UI under Settings > Active Platform > Users.

    image26.png
  20. Check Okta groups in the Netskope UI under Settings > Active Platform > Groups.

    image27.png
    image28.png
  21. The group will only display Okta users whose accounts have been assigned to the Okta SCIM app and synced to Netskope tenant.

    The Okta Users & Groups will also be available for selection in Inline Policies.

    image29.png

The SCIM configuration is complete.