# Add Okta to Nightfall

This document explains the process of adding your Okta tenant to Nightfall to enable Directory Sync. Once you add Okta to Nightfall, you can sync users and user groups data from your Okta account to Nightfall. To get an overview of the Directory Sync feature in Nightfall, you can read [this article](https://help.nightfall.ai/nightfall_settings/directory_sync) and then proceed with this document. 

In this document you are basically authorizing the Nightfall application in Okta. The authorization process involves two steps. In the first step, you authorize the Nightfall app in the Okta console. This process generates an Okta domain, client ID and client secret. You must copy these values. In the second step, you must paste these values in the Nightfall console to complete the process. 

## Prerequisites

* You must have admin access to your Okta account. 

## Integrating Nightfall in Okta

1. Log in to your Okta account with admin credentials and navigate to the admin console. 
2. In the left pane, expand **Applications** and select **API Service Integrations**.

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FdU2DTYkzv0ifGEgP3JM3%2Fimage.png?alt=media&#x26;token=214f2c1a-b445-4071-8eb6-9948af87432e" alt="" width="375"><figcaption></figcaption></figure>

3. Click **Add Integration**.
4. Select the **Nightfall AI** integration.&#x20;

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FNP97Mdhsvi23NkqMVg7S%2Fimageedit_6_3983768132.jpg?alt=media&#x26;token=5c4d8ade-0b29-4812-bdd7-5f72de6ec87f" alt=""><figcaption></figcaption></figure>

5. Click **Install & Authorize**.

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2Fp9DL6vyqGzqKo3xgis5U%2Fimage.png?alt=media&#x26;token=63a2b1fe-1bd9-4e13-8584-91b8af21fa4d" alt=""><figcaption></figcaption></figure>

6. The client secret is generated. Click **Copy to clipboard** and store this secret securely. You cannot view this secret again.&#x20;
7. Click **Done**.&#x20;

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FskIMjkrMPL63Vt3eb421%2Fimageedit_1_3413780076.jpg?alt=media&#x26;token=f19599e9-8c24-4a6d-b114-46d7f9a752a6" alt=""><figcaption></figcaption></figure>

7. Copy the values in the **Okta Domain** and **Client ID** fields.&#x20;

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FehNW6c9yYPUKZH0sFUVG%2Fimageedit_5_9366243539.jpg?alt=media&#x26;token=2d650e00-33d3-47d9-8a22-749767d0009c" alt="" width="563"><figcaption></figcaption></figure>

## Configuring Okta in Nightfall

1. Log in to your Nightfall console.
2. In the left pane, click the **Settings** menu.
3. Click the **Directory Sync** tab.

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FImGd8INh2clOkwbnoUM0%2Fimageedit_15_7857122738.jpg?alt=media&#x26;token=a2802d37-74f4-47f4-9e55-3e28a3417610" alt="" width="563"><figcaption></figcaption></figure>

4. Click **Add directory**.&#x20;

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FTbr1QGvG8xbQ14uVbN8Z%2Fimage.png?alt=media&#x26;token=387b1b9a-d39f-4464-8590-25600c47d24d" alt="" width="563"><figcaption></figcaption></figure>

{% hint style="info" %}
If you have already created IdP with Google Workspace or Microsoft Entra, you can view the list of IdP(s). In this case, you must click the **+ Add Directory** button.&#x20;
{% endhint %}

5. Click **Set up** on the Okta widget.&#x20;

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FkLqFwPTQwhtrF0A2HO3H%2Fimage.png?alt=media&#x26;token=9d03445e-c40d-40dd-ac68-251b80a9b47b" alt="" width="563"><figcaption></figcaption></figure>

6. Paste the **Okta Domain**, **Client ID,** and **Client Secret** values, obtained in the previous section.&#x20;
7. Click **Connect** (This button is activated only after you enter the values as mentioned in the previous step).

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FM0fSoziRcU1fX7Yt5cfG%2Fimageedit_3_5652461147.jpg?alt=media&#x26;token=68cf8167-077c-4cc3-989c-5e08afc845ff" alt="" width="563"><figcaption></figcaption></figure>

6. A dialogue box with successful connection message is displayed. Click **Finish** to complete the process.&#x20;

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FdkiF0XhGGT5zxbpcil1G%2Fimage.png?alt=media&#x26;token=7295e7a1-411b-4ca5-a520-eb1cb30f9aee" alt=""><figcaption></figcaption></figure>

You can view the connection details as shown in the following image. Click **+ Add directory** to authorize the Nightfall app on additional Okta domains.&#x20;

&#x20;

<figure><img src="https://2214688951-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2F-Mg3wgFIu8T7XAT1u-f_%2Fuploads%2FP8cjV0exfZdmzt6dUVlQ%2Fimageedit_21_6343856587.jpg?alt=media&#x26;token=698eab23-b666-4dc1-9eeb-8c84dbc2cd89" alt=""><figcaption></figcaption></figure>