Private Key Integration
The Private Key integration method provides the highest level of security for connecting Ravenna to your Okta organization. This method requires manual configuration in Okta but offers enhanced security through public/private key cryptography.
Setup Guide
Create Okta API Service Integration Manually
Create App Integration
Login to Okta and navigate to “Applications”, then select “Create App Integration”
Select Integration Type
Choose “API Services” as the integration type
Name the App Integration
Provide a name for your integration (e.g., “Ravenna API Integration”) and click Save
Configure Private Key Authentication
Configure the authentication method:
- Select “Private Key/Public Key” as the Client Authentication Method
- Click “Add Key” to generate a key pair
- Copy the Client ID for later use
Generate PEM Key Pair
Generate a new PEM key pair for the integration
Save Private Key and KID
Important: Copy and securely store both:
- The Private PEM Key
- The KID (Key Identifier)
You will need both values to configure Ravenna
Disable DPoP Requirement
Uncheck the “Require DPoP” option to ensure compatibility
Grant Required Scopes
Add the following Okta API scopes to the integration:
okta.users.read
okta.groups.read
okta.groups.manage
okta.apps.read
okta.apps.manage
Assign Admin Roles
Grant the following admin role to the integration:
Application Administrator
Add Integration to Ravenna
Navigate to Ravenna Integrations
Login to Ravenna and go to “Settings” then select “Integrations”
Select Okta Integration
Choose “Okta” from the available integrations
Choose Private Key Method
Select “Private Key” as your authentication method
Enter Integration Details
Provide the following information from your Okta setup:
- Okta Domain: Your Okta domain (e.g.,
https://your-org.okta.com
) - Client ID: The Client ID from your Okta integration
- Private Key PEM: The Private Key PEM you saved earlier
- KID: The Key Identifier (KID) you saved earlier
Complete Setup
Click “Add Okta” to complete the integration setup
Security Benefits
The Private Key integration method provides enhanced security through:
- Public Key Cryptography: Uses asymmetric encryption instead of shared secrets
- Key Rotation: Keys can be rotated without service interruption
- Reduced Attack Surface: No client secrets stored in multiple locations
- Audit Trail: Enhanced logging and monitoring capabilities
Next Steps
Once your Okta integration is connected, Ravenna will automatically:
- Import your Okta applications
- Sync user and group information
- Enable access request workflows through Okta groups
You can view and manage your imported applications in the Ravenna Organization Settings.