top of page

Universal Directory

One directory for all your users, groups, and devices

  • up to 5X – faster IT integration of acquired businesses

  • 0  – helpdesk calls for AD password resets

  • $50K  – saved by eliminating on-prem LDAP or ADFS maintenance


Get a single, consolidated view of every user

Multiple identity sources. One view.

Many companies have multiple identity sources with different types of users, such as contractors, partners, customers, and acquired companies’ employees. 

Okta Universal Directory provides a single view across all these groups with AD and LDAP directory integrations and out-of-the-box connections with HR systems like Workday, SaaS apps like G Suite, CSV files, and third-party identity providers.


Centralize user management

Stitch together user profiles from multiple identity sources, modify user attributes across sources, and manage user lifecycle states.

Central and secure policy engine

Boost security by setting consistent user access policies with a central policy engine. Create policies based on unique user contexts such as user location, IP, device, group membership, and more, and enforce these policies with any combination of MFA factors.

Streamlined password management

Customize group-based password policies, enforce AD and LDAP password policies, and enable self-serve password resets to relieve burden for your IT helpdesk.


Get your cloud afloat

Plenty of room for every user

With a cloud directory, you can store an unlimited number of users, including non-traditional users like contractors or temp workers. Store an unlimited number of custom attributes along with credentials and app assignments. You can even store device information.

Monitoring, reporting, and exporting

Get a real-time syslog to troubleshoot and address security issues immediately. Use pre-built reporting to see how end users use apps and services. And easily download or export your data to CSVs, sync it with SIEMs, or access it via API.

Cloud-based LDAP authentication

Eliminate the need for a local LDAP authentication with the LDAP Interface. Direct your existing LDAP-dependent applications to Okta using standard LDAP protocols. Then users can authenticate against Universal Directory secured by MFA.


bottom of page