Vanta's Okta integration enables you to control which employees should be automatically marked in and out of scope in Vanta by managing the Vanta app assignment within Okta.

IMPORTANT: Be sure to consult your CSM and / or auditor to validate the set of accounts that should and should not be managed by Vanta.

Step 1: Configure Okta

Login to Okta and navigate to the Assignments tab for the Vanta app:

Assign the Vanta app in Okta to the desired employees or groups.  For setup instructions, visit the Okta help center:

• How to assign an app to a group in Okta
• Creating group rules in Okta for automatic assignment

Step 2: Validate account assignments

Verify that the list of employees and/or groups that are assigned to the Vanta app reflects your desired scoping preferences. 

BEST PRACTICE: Vanta recommends creating an automated provisioning process to assign the Vanta app to new employees, or at least ensuring that you have developed a process.

Step 3: Enable the feature in Vanta

1. Navigate to the Connections page under "Company Settings"
2. Click the ellipsis - the three-dot menu - next to Okta and select "Configure scope"
3. Enable the IdP scoping toggle:

Once this feature is enabled, all user scope will be managed through Okta and the scoping toggle in Vanta will be disabled. Vanta will update the scope status for IdP accounts on the next data fetch, which happens on an hourly basis.