Add Subscribers Using Okta
If you are using Okta for authentication in your organization, you can add subscribers to CTIX using Okta. You can set up synchronization with your Okta account so that all the users in your Okta account are automatically added to the CTIX application as subscribers. You have to configure a few sequences of steps on Okta and then add the subscribers into the CTIX application.
Before you Start
You must have access to Okta.
Steps
Configure the following setups in Okta to sync with CTIX:
Configure Custom User Attributes in Okta
You can configure certain subscriber-related attributes such as Organization Type, Confidence, STIX collection, Allowed IP address, and organization name as custom attributes to your Okta users. You must do this configuration on the Okta platform. After you add these custom attributes, you will get an option to specify these values to your Okta users.
Steps
Sign in to your Okta account as an administrator.
In the Okta Admin Console, open Directory, and select Profile Editor.
In Users, select Okta under Filters.
Click Okta User (default) profile, and click Add Attribute.
To add Confidence as a custom attribute, do the following:
Select number as Data type.
Enter Confidence in the Display name.
Enter confidence as the Variable name.
Select Attribute required.
Click Save and Add Another to add more attributes.
To add Organization Type as a custom attribute, do the following:
Select string array as the Data type.
Enter Organization Type as the Display name.
Enter organization_type as the Variable name.
Select Define enumerated list of values to add the organization type names present in CTIX to Okta.
In Display name, enter the organization type. This must be the same as the organization type defined in CTIX. It is case-sensitive.
In Value, enter the value for organization type. This must be the same as the organization type defined in CTIX. It is case-sensitive.
Click + Add Another to add more organization types.
Click Save and Add Another to add more attributes.
To add the STIX collection as a custom attribute, do the following:
Select string array as the Data type.
Enter STIX Collection as the Display name.
Enter stix_collection as the Variable name.
Select Define enumerated list of values to add the organization type names present in CTIX to Okta.
In Display name, enter the STIX collection names. This must be the same as the STIX collection defined in CTIX. It is case-sensitive.
In Value, enter the value for the STIX collection. This must be the same as the STIX collection defined in CTIX. It is case-sensitive.
Click + Add Another to add more STIX collections.
Click Save and Add Another to add more attributes.
To add Allowed IP address as a custom attribute, do the following:
Select string array as the Data type.
Enter Allowed IP as the Display name.
Enter allowed_ip as the Variable name.
Select Define enumerated list of values to add the organization type names present in CTIX to Okta.
In Display name, enter the Allowed IP names. This must be the same as the Allowed IPs defined in CTIX. It is case-sensitive.
In Value, enter the value for the Allowed IP. This must be the same as the Allowed IPs defined in CTIX. It is case-sensitive.
Click + Add Another to add more Allowed IPs.
Click Save and Add Another to add more attributes.
To add the Organization name as a custom attribute, do the following:
Select string as the Data type.
Enter Organization Name as the Display name.
Enter organization_name as the Variable name.
Click Save.
Add Users in Okta
Add users into Okta and define the subscriber-related attributes such as Organization Type, Confidence, STIX collection, Allowed IP address, and Organization Name. Optionally, you can also edit your existing users and associate them with these custom attributes.
In the Okta Admin Console, open Directory, and select People.
Click Add person and fill the form for the user.
Enter values for the subscriber-related attributes such as Organization Type, Confidence, STIX collection, Allowed IP address, and organization name for the user.
Click Save and Add Another to add more users.
Click Save.
Generate API Token in Okta
You must generate an API token for your Okta user on the Okta platform.
Before you Start
You must have administrator privilege on Okta to perform API call actions.
Steps
In the Okta admin console, open Security and select API.
In Tokens, click Create Token.
Enter a name for your token, and click Create Token.
Copy the token and retain it to configure the Okta subscriber sync in CTIX.
After you close the screen, you cannot get the token again.
Configure Okta Sync in CTIX
To automatically add Okta users as subscribers to CTIX, configure Okta Sync in CTIX.
Before you Start
You must have View Subscribers, Create Subscribers, and Update Subscribers permissions to access the Subscribers module.
You should have generated an API token in Okta.
Steps
Sign in to CTIX.
From Administration, select Integration Management, and select Subscribers under FEED CONSUMERS.
Click the ellipsis on the top right corner of the screen, next to Add Subscriber, and select OKTA Sync.
Select Enable Okta Sync.
Enter the base URL of your Okta account.
Enter the Okta generated API token.
Enter the frequency in seconds that you want CTIX to connect to Okta and fetch your users.
Select Alert and select the internal applicants that receive the alert whenever subscribers are fetched and which subscribers are fetched into the CTIX application.
Click Test Connectivity to test if the connection with your Okta account has been successful.
Click Save.
All the subscribers that are fetched into CTIX are sent an email with the TAXII URLs.