New Secrets Search Function in Okta Privileged Access

Okta has introduced a new search function for Secrets in Okta Privileged Access (OPA).

When an OPA user goes to the Secrets menu item, they will see a new search option.

Typing in a search argument will show matching secrets with the secret name, Folder hierarchy (clickable breadcrumb), Resource Group / Project and Description.

You can directly access the secret from the search result, or click any of the breadcrumb items to see the folders.

The search uses a similarity function to catch typos (aka fuzzy search), but you need to be aware that you might get unexpected results. For example I know there’s no secret with “fred” in it’s name or description, but the search will match on parts of the search argument, like “red”.

Also, if the secret is “hidden” behind a policy control, like MFA or Access Request, it will not show up in the search results.

You can fix this by creating another policy rule that allows “List Item” access at the same level as the rule(s) applying MFA or Access Request. For example, I have two rules applying controls to accessing secrets in two folders (one applying MFA and another applying Access Requests). Searching for secrets will ignore those in the two folders because they are behind controls. However if you create additional rules to allow List Item to those folders (without MFA or Access Request), the search function will see the secrets in those folders.

This feature is a welcome addition to OPA for customers managing a lot of secrets across a complex folder structure.