diff --git a/Access_Controls-Applications-Infrastructure.tf b/Access_Controls-Applications-Infrastructure.tf
index e25b4f9..be3154a 100644
--- a/Access_Controls-Applications-Infrastructure.tf
+++ b/Access_Controls-Applications-Infrastructure.tf
@@ -50,14 +50,14 @@ resource "cloudflare_zero_trust_access_application" "cloudflare_aws_app_ssh_infr
     include = [
       {
         saml = {
-          identity_provider_id = var.cloudflare_okta_identity_provider_id
+          identity_provider_id = cloudflare_zero_trust_access_identity_provider.authentik_oidc.id
           attribute_name       = "groups"
           attribute_value      = var.okta_infra_admin_saml_group_name
         }
       },
       {
         saml = {
-          identity_provider_id = var.cloudflare_okta_identity_provider_id
+          identity_provider_id = cloudflare_zero_trust_access_identity_provider.authentik_oidc.id
           attribute_name       = "groups"
           attribute_value      = var.okta_contractors_saml_group_name
         }
diff --git a/variables.auto.tfvars b/variables.auto.tfvars
index 1af4dd8..65380d8 100644
--- a/variables.auto.tfvars
+++ b/variables.auto.tfvars
@@ -140,8 +140,8 @@ cloudflare_intranet_app_port             = 8181
 cloudflare_domain_controller_rdp_port    = 3389
 
 # Identity Providers - Sensitive: manually retrieved from Cloudflare dashboard
-#cloudflare_okta_identity_provider_id  = "2af2b24b-f850-4e04-95f6-04a651c71f7a"
-#cloudflare_otp_identity_provider_id   = "0f818053-eafb-458f-90c2-0ff2d4b5d69c"
+cloudflare_okta_identity_provider_id  = "2af2b24b-f850-4e04-95f6-04a651c71f7a"
+cloudflare_otp_identity_provider_id   = "0f818053-eafb-458f-90c2-0ff2d4b5d69c"
 #cloudflare_azure_identity_provider_id = "8c593fe8-aee3-4075-33333333"
 #cloudflare_azure_admin_rule_group_id  = "5f253130-a400-4215-44444444"
 
diff --git a/variables.tf b/variables.tf
index 118cf19..dfed0ea 100644
--- a/variables.tf
+++ b/variables.tf
@@ -172,17 +172,17 @@ variable "dns_proxied" {
 #======================================================
 # IDENTITY PROVIDERS
 #======================================================
-#variable "cloudflare_okta_identity_provider_id" {
-#  description = "Okta Identity Provider ID in Cloudflare"
-#  type        = string
-#  sensitive   = true
-#}
+variable "cloudflare_okta_identity_provider_id" {
+  description = "Okta Identity Provider ID in Cloudflare"
+  type        = string
+  sensitive   = true
+}
 
-#variable "cloudflare_otp_identity_provider_id" {
-#  description = "OneTime PIN identity provider ID in Cloudflare"
-#  type        = string
-#  sensitive   = true
-#}
+variable "cloudflare_otp_identity_provider_id" {
+  description = "OneTime PIN identity provider ID in Cloudflare"
+  type        = string
+  sensitive   = true
+}
 
 #variable "cloudflare_azure_identity_provider_id" {
 #  description = "Azure Entra ID identity provider ID in Cloudflare"