Connecting Workplace and Okta

Speaker 1: Hello. In this video series we'll take you through using Okta to manage the user lifecycle for your Workplace by Facebook project. Getting Okta and Workplace connected involves these five steps. First, we'll acquire an Okta Org, leveraging the Okta cloud connect program, or OCC. An OCC org from Okta provides you a fully functional, production ready instance of Okta that's limited to one application. In this case, Workplace by Facebook. That Okta Org is fully production ready and entitles you to three calls to our support desk. From there, we'll install and configure the Okta active directory agent, which will connect your Okta Org into your own active directory infrastructure, allowing for existing users in groups from AD to be leveraged for your Workplace by Facebook project. Then we'll add the Workplace by Facebook app into Okta. We'll enable SSO for that APP, and then will enable provisioning so that Okta can handle user create, update and delete inside of your Workplace by Facebook instance.

Speaker 1: These are the core pieces of functionality that are made available to you for free with the Okta cloud connect program, but Okta is a full identity provider and offers advanced features such as desktop SSO, which is also known as credential pass through, on network and off network policies, AD password reset, multifactor authentication. We can even extend out to mobile management with the Okta mobility management, or OMM, product. I encourage you to look at support.okta.com for details on these extended pieces of functionality. Let's go ahead and get started. So the first step is to acquire our Okta Org, leveraging the OCC program.

Speaker 1: To do this, browse out to www.okta.com, which is available here. Hover over the resources tab and you'll see a find your apps link. When you click on this, you'll be provided with a listing of our Okta application network, our list of pre-integrated applications. You can search specifically on Facebook and what will come up are a number of options. And we want the Facebook at Work or Workplace by Facebook instance. This will bring us to a form. It's going to ask us for a little bit of information about the company that we're working with and the first administrator that we'd like to map to our Okta Org. By filling out this form on the right will be provided with our full OCC Okta Org. Let's do that now.

Speaker 1: So I have this Okta BD instance that is available for us. We'll use this to simulate our company. When I'm done with that, I've provided a number of users, a company name, a couple of things to look for. We're pulling the tentative URL of our Okta Org from the email domain based on the original administrator that we're providing here. If there's a problem, if this Okta BD dot domain is already taken, you'll be prompted to add a suffix or a prefix to this to generate a unique URL. Additionally, if the page reloads without configuring your Okta Org, it's likely that your company name is already taken. Typically at this place you could add location information, regional information, or a dot inc for incorporated. We'll go ahead and sign up. When this page reloads, we'll be told, "Here's your new Okta Org," and we'll be provided some basic materials to get us started.

Speaker 1: If you wanted to click through this, it's highly recommended. You could read up on the various pieces of functionality that we're going to install. Additionally on this [email protected] email account, which we can see here, that's who I'm logged in as, I've just been sent the information for my new Okta cloud connect org. I click in here, I'm provided with a default password. We'll go ahead and copy this and then I will go out and open my Okta Org. We'll get logged in here for the first time by providing that administrator name that I just typed in. We'll paste this temporary password that we just set up, or that we were just sent and it will prompt us to set our new regular password for this administrator user.

Speaker 1: Pick a password reset question and a security picture. This will fully authorize and activate my new administrator, and now I have access to my full Okta Org. This initial view is the end user view of Okta, but notice I have access to the admin console. If I click on that admin button, I'm provided with functionality of a full Okta Org. The biggest difference here between a production or proof of concept org that you may be working with with Okta and the OCC org is that when I come to add applications, I will be limited to just the single Workplace by Facebook or Facebook at Work application. In follow on videos, we will take you through setting up the active directory connection as well as configuring your Facebook connection from the Okta Org.