CREATE SECURITY INTEGRATION
Syntax
CREATE SECURITY INTEGRATION [IF NOT EXISTS] security_integration_name
WITH (security_integration_parameter = value [, ... ]);
Description
Security integrations allow Organizations to configure authentication and authorization mechanisms.
SOnly a role with MANAGE_MEMBERS privilege can create a security integration.
Arguments
security_integration_name
Specifies the name of the new security integration. If the name is case sensitive you must wrap it in double quotes; otherwise the system uses the lower case name.
WITH (security_integration_parameter = value [, … ])
This clause specifies Security Integration Parameters.
Security Integration Parameters
type
Type of security integration. Required: Yes
Valid values: SCIM
SCIM Specific Parameters
scim.client
Type of SCIM client that will use the SCIM API. Required: No
Valid values: OKTA
scim.run_as_role
The role used to manage all users and custom roles for the SCIM integration.
Required: No
Valid values: okta_skim_provisioner
for OKTA client.
Default: okta_skim_provisioner
for OKTA client.
Examples
Create a OKTA SCIM security integration
The following creates a new SCIM security integration with name okta
:
<no-db>/<no-store># CREATE SECURITY INTEGRATION "okta" WITH ( 'type' = SCIM, 'scim.client' = OKTA, 'scim.run_as_role' = okta_skim_provisioner );
+----------------------+-------+----------+------------------------------------------+----------------------+-------------------+-------------------------------+
| Type | Name | Command | Summary | Token | Uri | Expires At |
+======================+=======+==========+==========================================+======================+===================+===============================+
| security integration | okta | CREATE | security integration okta was | <redacted_new_token> | <integration_uri> | 2025-07-15 23:17:15 +0000 UTC |
| | | | successfully created | | | |
+----------------------+-------+----------+------------------------------------------+----------------------+-------------------+-------------------------------+
You can use the Uri
and Token
from the response of this command to configure an Okta App Integration.
Last updated