Create an Okta API Token
Before you can collect and analyze Okta log data within USM Anywhere, you must have an API token that USM Anywhere can use to connect to your Okta environment. Okta issues an API token for a specific user and all requests with that token act on behalf of that user.You must have Okta Super Administrator or Org Administrator privileges to generate a valid API token for integration with the BlueApp for Okta. See their Administrators article for more information about administrator privileges in Okta.
- Open your Okta administration dashboard with your user login.
- Select Security > API.
- At the top of the page, click Create Token.
-
In the dialog box, enter a name for the token and click Create Token.
The name should indicate the intended use for the token, such as USM-Anywhere.
Okta generates the unique token and displays the value in the dialog box.
-
Copy the token to your clipboard or an encrypted text file and click OK, got it.
The list in the page includes your new token.
Enable the BlueApp for Okta API Connection
After you generate an Okta API token and copy the value, you’re ready to enable the BlueApp in USM Anywhere. To enable the BlueApp for Okta- In USM Anywhere, go to Data Sources > BlueApps.
- Click the Available Apps tab.
- Search for the BlueApp, and then click the tile.
- Click Configure API.
- If you have more than one deployed USM Anywhere Sensor, select the sensor that you want to use for the enabled BlueApp. BlueApps operate through a deployed sensor and use APIs to integrate with the connected third-party technology. Select the sensor that can access the integration endpoint. The HTTPS connections to the API will originate from this sensor, so it is important to make sure the sensor has network access to the BlueApp API endpoints.
-
Enter the connection information to access the API for your Okta environment:
- Okta URL: Enter the URL that you use to access your Okta environment.
- Okta API Token: Click Change Okta API Token and enter the API token created with your user account.
- Click Save.
-
Verify the connection.
After USM Anywhere completes a successful connection to the Okta APIs, a
icon displays in the Health column. If the
icon displays, there is a problem with the connection. The Message column provides information about the issue. Repeat the steps to fix the configuration or troubleshoot your Okta connection.
BlueApp Log Collection
Once the BlueApp has been configured, you can choose to have USM Anywhere collect logs from the app on a regular basis. To configure log collection for the BlueApp- Go to Settings > Scheduler.
- In the Job Scheduler, search for the BlueApp on the sensor to which it was deployed.
- In the enabled column, click the
icon for the inactive collection job.
- (Optional.) Click the
icon to customize the frequency of the event collection.