Skip to main content

Integrate Lattice HRIS with Okta

Poppy
  • Updated

Admins will be able to integrate with Okta and set up Lattice as their company's source of truth for employee data.

Before you start

  • You must be a super admin in both Lattice and Okta.
  • You will need to request access to generate a Lattice API key, by following these steps - Request an API key
  • If you were previously using Okta to provision users to Lattice Talent, please disconnect the Okta provisioning following Disconnect your Okta SCIM Integration.
  • If you were previously using Okta SSO and already have it set up for Lattice, it will continue to work. 

Supported features

  • Profile Sourcing: A profile source is an application that acts as the source of truth for user identities. Lattice HRIS is the profile source for the Lattice HRIS to Okta integration. 
    • If more than one profile source is listed on the Profile Sources page, you can prioritize them so that user profile attributes can be sourced by different systems, based on their assignments. At any given time, there can only be one profile source for a user's profile.
    • Learn more about Okta Profile Source Documentation. 
  • Import Users: Users created in Lattice HRIS can be imported into Okta and either matched against existing Okta users or created as new Okta users.
  • Update user attributes: When user attributes are updated in Lattice, they will be updated in Okta.
  • Deactivate/reactivate users: When users are deactivated in Lattice, they will be deactivated in Okta. 

Initiate the connection

  1. In Lattice, navigate to Company > Platform > Integrations > select Enable SCIM.
  2. Go to Integrations > API Keys and generate a new API key. Save this for later as we will enter it in Okta. If you do not have access to do this, you need to request access to generate a key following these steps: Request an API key
  3. In Okta, go to Application > Applications > select Browse App Catalog.
  4. Select Lattice HRIS. Make sure to choose the one with "HRIS" next to Lattice. 
  5. Select Add Integration.
  6. You will be prompted to enter General Settings. Next to subdomain, enter your company’s subdomain name and choose Done.
    1. The subdomain is the first portion of your Lattice URL. For example, if your Lattice URL were microsoft.latticehq.com, you'd enter Microsoft.
  7. Go to the Sign On tab and update the Application Username format to Email.
  8. Navigate to the Provisioning tab, click on Configure API Integration, and enable API integration.
  9. Enter the API key you previously retrieved from Lattice.
  10. Paste it in > Select Test API Credentials.

Set up in Okta and run your first import

  1. In your Lattice HRIS app in Okta, go to Provisioning > To Okta.
  2. Select your settings in Okta.

  1. Allow Lattice HRIS to source Okta users & set your threshold to 1% (recommended for testing)  

  1. Go to Import > Import Now.
  2. Once imported, you should then be able to confirm their assignments. Please note that you always have to manually confirm the assignments for newly created users. This is a feature in Okta.
  3. When ready, you can schedule the Imports on a cadence by going back to Provisioning > To Okta, and edit the General settings

Screenshot 2025-03-25 at 12.04.00 PM (1).png

 

What information will flow into Okta by default?

Okta Attribute Lattice HRIS Field
Username Work email
First name Legal first name
Last name Legal last name
Middle Name Legal middle Name
Primary email Work email
Primary email type (work)
Title Job title
Display name Name (Preferred full name)
Nickname Preferred first name
Time zone Time zone
User type Employment type
Employee number Employee ID
Department Department
Manager value Manager ID
Manager Name Manager preferred name
Manager Email Manager Email
Job type Job type
Job level Job level
Last working day Last working day
Birthdate Birthdate
Start date Start date
Work Location State Work Location State
Work Location Country Work Location Country
Work Location Name Work Location Name
Employment Status Employment Status

 

Adding custom attributes in Okta

  1. Make sure that these custom fields are already created in Lattice.
  2. In Okta, navigate to your Lattice HRIS app, go to Provisioning > To app, scroll down, and select Go to Profile Editor.
  3. Click Add attribute. You will then see a form to enter the values. 
    • Variable name: homeOffice
    • External name: homeOffice
    • External namespace: urn:ietf:params:scim:schemas:extension:lattice:attributes:1.0:User
      • Please note that this is the external namespace to use when adding ANY custom attributes from Lattice.
    • Attribute required: Not required (do not select).
  4. Navigate back to your Lattice HRIS app > Provisioning > To Okta.
  5. Click Add attribute, and add the variable name of the field. 
    • Variable name: homeOffice
  6. Lastly, we will map these two attributes. Navigate back to Directory > Profile editor > Lattice HRIS > Edit mappings, you should be able to match the two attributes you just created.

Related articles