Identity & Access Management (IAM) Integration

Overview

Electric integrates directly with leading Identity and Access Management (IAM) providers to automate identity lifecycle management. By connecting Electric to your IAM, employee changes in Electric automatically trigger identity actions in your directory.

This ensures:

• Accurate user provisioning

• Policy-based group assignment

• Reduced manual IT coordination

• Faster onboarding and secure offboarding

• Consistent identity governance

Electric currently supports integrations with:

• Okta

• Microsoft Entra ID

How the Integration Works

Electric acts as the lifecycle orchestration layer. IAM platforms remain the system of control for authentication, policy enforcement, and downstream application access.

When an employee is onboarded or offboarded in Electric, Electric pushes the appropriate identity actions to your IAM provider.

Okta Integration

Admin Configuration in Electric

An admin enables the Okta integration within Electric.

Once enabled, the admin can configure:

• Which Okta groups users should be assigned to based on Electric group membership

• Offboarding behavior (disable account)

Group mappings define how Electric groups translate into Okta identity structure.

Example:

When an Employee Is Added in Electric

Electric will:

1. Create the user in Okta

2. Assign the user to Okta groups based on configured mappings

This enables:

• Automated application provisioning

• Role-based access enforcement

• SSO and MFA policy inheritance

• Downstream SaaS access management

When an Employee Is Removed in Electric

Electric will:

Disable the user account in Okta.

This ensures:

• Immediate access removal

• Termination of active sessions

• Removal of application access

Microsoft Entra ID Integration

Admin Configuration in Electric

An admin enables the Entra integration directly within Electric.

Once enabled, the admin can configure:

• Which Entra groups users should be assigned to based on their Electric group membership

• Which Microsoft Administrative Units (AUs) users should be assigned to based on Electric group membership

• Offboarding behavior (disable or delete account)

This creates a rules-based mapping between Electric groups and Entra identity structure.

Example:

When an Employee Is Onboarded in Electric

Electric will:

1. Create the user in Microsoft Entra ID

2. Assign the user to Entra groups based on configured mappings

3. Assign the user to Entra Administrative Units based on configured mappings

This enables:

• Policy-based access control

• Conditional access enforcement

• Application provisioning via Entra

• Role-based administrative scoping

All identity assignments are automated and consistent.

When an Employee Is Offboarded in Electric

Electric will:

Disable or delete the user account in Entra

• Default behavior: Disable

• Configurable: Delete

This ensures:

• Immediate access revocation

• Protection against lingering credentials

• Preservation of audit history (if disabled)

Governance & Control

Electric does not replace your IAM.

Your IAM remains the source of truth for:

• Authentication

• MFA policies

• Conditional access

• Application provisioning rules

• Security policies

Electric ensures identity lifecycle events are triggered automatically and consistently, reducing manual steps between HR, IT, and security teams.

Benefits of IAM Integration

1. Lifecycle Automation

Employee changes automatically trigger identity changes.

2. Reduced Manual Errors

No spreadsheet tracking or email-based provisioning.

3. Faster Onboarding

Users receive correct access on day one.

4. Secure Offboarding

Accounts are disabled or deleted immediately.

5. Policy-Based Access

Group-driven rules ensure consistent enforcement.

Summary

By integrating with Okta and Microsoft Entra ID, Electric connects employee lifecycle events directly to identity lifecycle actions.

This eliminates manual coordination, reduces risk, and ensures identity governance remains aligned with workforce changes.