Ideally there would be a single login with Okta button instead of 100 different custom connections.
I’m honestly not sure if Okta supports a global entry point for people coming in from different directories, otherwise you’ll need to create one connection per each (can be a SAML connection or an OpenID Connect enterprise connection as well).
Azure AD, for instance, lets you create a “multi-tenant” application registration, and they offer a “common” login endpoint, where home realm discovery is done by Azure AD for all of their known domains. This combination lets you create an Azure AD connection in Auth0 that lets users from any Azure AD domain to log in. But, again, don’t know if Okta provides a similar feature.
The issue I see with saml is that it requires a cert. I’m not sure if I can use the /api/v2/connections endpoint to create a saml connection. Ideally I would want to automate the setup process so that the okta admin would upload their cert and info to our service and have it instantly work.
/api/v2/connections lets you create any connection type, just like you’d do from the dashboard.
If you don’t want to deal with certificates, maybe Enterprise OIDC connections can help. If the service supports OIDC discovery, then Auth0 will get the data directly from the discovery endpoint and the necessary information to set up the connection is minimal.