{"id":2668,"date":"2017-12-08T16:28:51","date_gmt":"2017-12-08T15:28:51","guid":{"rendered":"https:\/\/www.lieben.nu\/liebensraum\/?p=2668"},"modified":"2017-12-08T16:28:51","modified_gmt":"2017-12-08T15:28:51","slug":"setting-up-okta-user-office-365-contact-synchronisation","status":"publish","type":"post","link":"https:\/\/lieben.nu\/liebensraum\/2017\/12\/setting-up-okta-user-office-365-contact-synchronisation\/","title":{"rendered":"Setting up Okta User -> Office 365 contact synchronisation"},"content":{"rendered":"

Okta natively does not allow you to sync users to Office 365 contacts; they either exist as users<\/strong> in Office 365, or they don’t exist at all<\/strong>.<\/p>\n

In hybrid scenarios where you are doing a staged migration to Office 365, or where you simply manage your contacts in Okta, you may want to populate the Global Address List in Office 365 with your Okta users.<\/p>\n

I’ve written a simple solution for this, you will require:<\/p>\n

    \n
  1. Okta Admin Access (to obtain a token)<\/li>\n
  2. Office 365 credentials (to write \/ modify Contacts)<\/li>\n
  3. An Azure Subscription (for automation)<\/li>\n<\/ol>\n

    The solution will sync your users in Okta to Office 365, take note of the following:<\/p>\n

      \n
    1. It only syncs if the user isn’t already synced by AADConnect<\/li>\n
    2. It only syncs users with both a first and lastname and valid email address<\/li>\n
    3. It will update\/sync the following fields:\n
        \n
      1. Email<\/li>\n
      2. Firstname<\/li>\n
      3. Lastname<\/li>\n
      4. Address<\/li>\n
      5. Country<\/li>\n
      6. DisplayName<\/li>\n
      7. Zip Code<\/li>\n
      8. City<\/li>\n
      9. Department<\/li>\n
      10. Title<\/li>\n<\/ol>\n<\/li>\n<\/ol>\n

        1. Retrieve an Okta API token<\/strong><\/p>\n

        \"\"<\/a><\/p>\n

        Save the value you are provided<\/em>, you will need it later.<\/p>\n

        2.\u00a0<\/strong>Find your Okta API URL<\/p>\n

        \"\"<\/a><\/p>\n

        The section marked in red contains your company name, use that to create an URL such as this:<\/p>\n

        https:\/\/lieben.okta.com<\/p>\n

        here, ‘lieben’ is my company name, insert yours there. Save this URL, you’ll need it later, do not use a trailing \/.<\/p>\n

        3. Go to portal.azure.com, log in and create an automation account (default) or select your existing automation account<\/strong><\/p>\n

        4. Import my script as a runbook into your Automation Account<\/strong><\/p>\n

        \"\"<\/a><\/p>\n

        Alternatively, you can get the source from GitLab<\/a><\/p>\n

        5. Create a credential asset in your automation account with your Office 365 credentials for the script to use<\/strong>\"\"6. Create another credential asset, this one with your OKTA TOKEN, fill in the OKTA token as password, you can leave the username empty.<\/span><\/strong><\/p>\n

        7. Under runbooks, navigate to the imported runbook and click on it, then click edit -> publish to allow scheduling of the runbook.<\/strong><\/p>\n

        \"\"<\/a>8. Now that it is published, you’ll be able to schedule it with the parameters you’ve defined in the previous steps:<\/strong><\/p>\n

        \"\"<\/a><\/p>\n

        I don’t recommend running it more than once a day. If there are issues, you’ll be able to find them under the Jobs section of your automation account.<\/p>\n","protected":false},"excerpt":{"rendered":"

        Okta natively does not allow you to sync users to Office 365 contacts; they either exist as users in Office 365, or they don’t exist at all. In hybrid scenarios where you are doing a staged migration to Office 365, or where you simply manage your contacts in Okta, you may want to populate the … Continue reading Setting up Okta User -> Office 365 contact synchronisation<\/span> →<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_crdt_document":"","footnotes":""},"categories":[5,18,21,33,39],"tags":[],"class_list":["post-2668","post","type-post","status-publish","format-standard","hentry","category-azure","category-exchange-online","category-identity","category-okta","category-powershell"],"_links":{"self":[{"href":"https:\/\/lieben.nu\/liebensraum\/wp-json\/wp\/v2\/posts\/2668","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/lieben.nu\/liebensraum\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/lieben.nu\/liebensraum\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/lieben.nu\/liebensraum\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/lieben.nu\/liebensraum\/wp-json\/wp\/v2\/comments?post=2668"}],"version-history":[{"count":0,"href":"https:\/\/lieben.nu\/liebensraum\/wp-json\/wp\/v2\/posts\/2668\/revisions"}],"wp:attachment":[{"href":"https:\/\/lieben.nu\/liebensraum\/wp-json\/wp\/v2\/media?parent=2668"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/lieben.nu\/liebensraum\/wp-json\/wp\/v2\/categories?post=2668"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/lieben.nu\/liebensraum\/wp-json\/wp\/v2\/tags?post=2668"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}