Explore documentation
  1. Welcome 👋
  2. Product
    1. Tracing ↗
    2. Incident management ↗
    3. Uptime monitoring ↗
    4. Log management ↗
    5. Infrastructure monitoring ↗
    6. Status page ↗
    7. Error tracking ↗
    8. Warehouse ↗
  3. Integrations
    1. Integrating with Better Stack
    2. iOS & Android
    3. SSO providers
      1. AWS SSO
      2. Azure SSO
      3. Okta SSO
        1. Overview
        2. SAML setup instructions
        3. SCIM setup instructions
        4. Dynamic RBAC Assignments
      4. Other SSO providers
    4. Terraform
    5. MCP server
  4. Team and account management
    1. Team management
    2. Account settings
    3. Reporting
    4. Audit logs
  5. Design
    1. Brand guidelines

Okta SCIM setup instructions

Set up SCIM for automatic user provisioning and profile synchronization from Okta to Better Stack.

Prerequisites

User provisioning using SCIM requires a working Single Sign-On (SSO) setup with Okta. Follow the SAML setup instructions if you haven't already.

Supported features

  • Create users
  • Update user attributes
  • Deactivate users
  • Sync password
  • Group push
  • Import users and groups

Configuration steps

  1. In your Okta SSO settings in Better Stack, enable the Provisioning toggle.
  2. Copy the Bearer token.
  3. In your Okta dashboard, open the Better Stack application and go to the Provisioning tab.
  4. For Application username format, select Email.
  5. Paste the Bearer token into the corresponding field.
  6. Click Save.
  7. While still on the Provisioning tab, click Edit next to Provisioning to App.
  8. Enable Create Users, Update User Attributes, Deactivate Users, and Sync Password.
  9. Click Save.

SCIM user provisioning is now active. When you assign users to the Better Stack application in Okta, they will sync automatically.

We also support pushing user groups from Okta. Each group will create a new team in Better Stack with the assigned users.

Deprovisioning an Okta group from the Better Stack application will permanently delete the corresponding team and all its resources in Better Stack. Proceed with caution to avoid data loss.

Troubleshooting

When you deactivate or remove a user from the SCIM integration in Okta, we automatically remove them from your Better Stack organization. If the user belongs to another organization, their account is not deleted completely—they are only detached from your organization and teams. Reconnecting the user via SCIM will re-add them.

Previous article

Okta SAML setup instructions

Next article

Dynamic RBAC Assignments