Feature: OKTA broker

[kslepowronski]

Is there an existing request for this feature?

• [X] I have searched the existing issues and found none that matched mine

Describe the feature

Since OKTA is one of most frequently used by enterprise would it possible to create a broker for it?

Describe the ideal solution

Broker with similiar workflow as Entra ID

Alternatives and current workarounds

Currently it is possible to sync OKTA to Entra and use that to get authentication working but this only adds one additional system which optimally could be eliminated.

System information and logs

No response

Relevant information

No response

Double check your logs

• [X] I have redacted any sensitive information from the logs

[shiv-tyagi]

This would be a useful integration. If anyone is not working on this, I would like to give it a try.

@adombeck @denisonbarbosa

[adombeck]

Hi @shiv-tyagi, that's a very big task. I suggest you work on something a bit smaller. I looked through our open issues and found these two which might be a better fit:

• https://github.com/ubuntu/authd/issues/640
• https://github.com/ubuntu/authd/issues/620

Let me know if any of those sound interesting to you and I'll explain more on the ticket about what needs to be done.

[shiv-tyagi]

Issue: EntraID groups that are renamed result in auth failures because GID conflicts authd#

I would like to work on this issue. I went through the comments and got an idea of what needs to be done. Anything else you would like to emphasise or should I do a PR and ask you for a feedback on it?

[adombeck]

I replied in https://github.com/ubuntu/authd/issues/620#issuecomment-2479001107