BMP Provisioning with Identity Connector for Okta

Alicia Allen Updated by Alicia Allen

Overview

Brivo's Identity Connector integration with Okta allows users to provision Brivo Mobile Passes to users synced to Brivo Access via Okta.

Prerequisites

Before you begin, ensure that you have the following required elements:

  • An active Okta account
  • An active Brivo Access account with an Identity Connector subscription.
  • A configured Okta integration in Brivo Access.

To issue Brivo Mobile Passes from Okta, a custom attribute will need to be added to be passed to Brivo with each user.

The attribute will be a boolean(true or false) value. If the value is true, a new Brivo Mobile Pass will be issued to the user if they do not have an existing Brivo Mobile Pass. If the value is false, an existing pass will be revoked. If the value is null no change will be made.

NOTE: In order for a user to be issued a pass, the user must be assigned to a group in Brivo Access and the Brivo account must have available passes. The user must also be in a group pushed by Okta.

Add the Brivo Mobile Pass custom field to your default Okta user profile.

  1. Click on Directory on the navigation bar, then click Profile Editor and select your default Okta user profile from the list.
  1. Click Add Attribute.
  2. On the Add Attribute mapping page, set your data type to boolean. Set your display name and variable name to brivoMobilePass. Save the attribute.

Add the attribute to your existing Brivo Identity Management application.

  1. Click on Directory on the navigation bar, then click Profile Editor and select your Brivo Identity Management application from the list.
  1. Click Add Attribute.
  1. On the Add Attribute mapping page, set your data type to boolean. Set your display name to Brivo Mobile Pass. Set your variable name to brivoMobilePass, this will also set your external name. Set the External namespace to urn:ietf:params:scim:schemas:core:2.0:User Give the attribute a description and save the attribute.

NOTE: The variable name and external namespace must be entered exactly as indicated in Step 3. They are case-sensitive.

Add the mapping to your existing Brivo Identity Management Application.

  1. Click Applications, then Applications, and select your application from the list.
  1. Click on the provisioning tab.
  1. Scroll to the bottom of the provisioning tab and click Show unmapped attributes then click the edit icon in line with the Brivo Mobile Pass attribute.
  1. Select Map from Okta Profile. Select brivoMobilePass | boolean.

Issue a pass to a user.

  1. Click the assignments tab then click the edit icon for the user.
  1. Scroll to the Brivo Mobile Pass Field and select true. Click Save.

When this user is provisioned, if they don't already have an assigned Brivo Mobile Pass, one will be issued.

NOTE: If the Brivo Mobile Pass value is set to false, assigned passes will be revoked from the user upon the next sync.

How did we do?

Identity Connector for Okta

Configure Identity Connector for Okta

Contact