User and group provisioning for Okta is generally available

User and group provisioning for Okta has become generally available, allowing administrators to streamline the onboarding and offboarding processes by syncing directly with the identity provider. This feature enables automatic synchronization of group memberships and deactivated users, allowing predefined groups in Okta to be pushed to Tailscale with updates to group names and users reflected automatically. By integrating Okta's groups into access rules within the tailnet policy file, organizations can maintain up-to-date permissions without manual intervention, addressing significant operational challenges when employees are hired, change teams, or exit. This advancement simplifies user and device management and reduces the administrative burden associated with updating permissions manually.