Okta Integration: Obtaining a Salesforce OAuth Consumer Key and Secret for Okta Provisioning

If you are stuck on Step 3 in the “Configure Okta” section of this article because you do not see the username/password+token fields then follow the instructions below. For newer Okta tenants, the Username and Password + Token fields have changed to OAuth Consumer Key, which is the Consumer Key from your Salesforce OAuth settings, and OAuth Consumer Secret, which is the Consumer Secret from your Salesforce OAuth settings.


  1. From Salesforce Classic Setup, search for “apps” in the Quick Find box.

  2. Select Apps under Build > Create.

  3. Find the Connected Apps section and click New.

  4. Name the connected app “Okta Provisioning.” The API name will auto-fill. Use the Okta admin's email address in the next field.

  5. Scroll down and click Save.

  6. Head back to the Apps page and click Edit next to the Connected App you just created.

  7. In the API (Enable OAuth Settings) section, check the box for Enable OAuth Settings and fill out the settings outlined in this Okta Help article: Configure Salesforce OAuth and REST integration| Okta. Note: The OAuth Scope “Access and manage your data (API)” might be under a new name. Use Manage user data via APIs(api) instead. You'll also need to uncheck Require Proof Key for Code Exchange (PKCE) Extension for Supported Authorization Flows. Here is a screenshot on how the settings should appear:
    image (38).png

  8. Scroll down and click Save.

  9. Click Continue when you are prompted with the following warning:

  10. You should now see the following page:

  11. To obtain the Consumer Key and Secret, click Manage Consumer Details.

  12. Salesforce will ask you to verify your identity. You will be prompted to check your email, copy the validation code, and paste the code. Be sure to check your Spam folder. If you have Salesforce MFA setup, you may receive an alert on your mobile device to verify your identity. 

  13. After validation, the Consumer Key and Secret should appear.

  14. Search for "Manage Connected Apps" in the "Quick Find / Search.." box on the upper left and click on "Manage Connected Apps"
  15. Click "Edit" next to the connected app that you created. In this screenshot, my app is named "Okta Provisioning":
  16. Ensure that "Permitted Users" under "OAuth Policies" section is set to "All users may self-authorize"
Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request



Please sign in to leave a comment.

Articles in this section

See more