Fixed Recovery Questions with Workflows

Recently an Okta customer was interested in being able to set a fixed Recovery Question for a subset of its employees. In particular they wanted to use an attribute from their source of truth as a security answer. Having a fixed security question and answer based on an employee attribute does have security drawbacks however … Continue reading Fixed Recovery Questions with Workflows

Okta Devices SDK Sample App

Sample App Setup ProcedureStep 1 - Create a OIDC Client AppStep 2 - Configure Firebase Cloud MessagingCreate Firebase ProjectAdd an Android App to your ProjectCreate an API KeyStep 3 - Set Up Notification ServiceStep 4 - Add a Custom AuthenticatorStep 5 - Configure a Global Session Policy and Authentication PoliciesStep 6 - Download and Compile … Continue reading Okta Devices SDK Sample App

Enforcing device assurance on unmanaged devices (BYOD)

One of the biggest challenges for organisations is being able to increase the security posture of their employee's BYOD devices while respecting their privacy and improving their user experience. Okta announced recently the new feature called Okta Device Assurance which allow organisations to increase the posture of their BYOD's users leveraging Okta Verify Application. Until … Continue reading Enforcing device assurance on unmanaged devices (BYOD)

Optimising Twilio Flex Licensing with Okta Workflows

Twilio Flex, Twilio's contact centre solution, supports SAML 2.0 for Agent and Supervisor provisioning and access. Users are provisioned Just In Time into TaskRouter workers with skills and attributes created or updated when a user logs in. Unfortunately Twilio provides no standard way of de-provisioning users. This means that Flex licenses may continue to be … Continue reading Optimising Twilio Flex Licensing with Okta Workflows

Getting Started with Okta

Okta provides cloud software that helps companies manage and secure user authentication into applications, and for developers to build identity controls into applications, website web services and devices (see wiki). See this great introductory video too. The purpose of this article is to detail my experience in getting started with the Okta (Identity Engine or … Continue reading Getting Started with Okta

Choosing Specific Factors in OIE with the API

Okta Identity Engine provides increased flexibility for Authentication with Application Level Policies and easy to configure passwordless sign-in experiences. These are covered extensively in our deployment guides: Authentication policies deployment guide and Passwordless authentication deployment guide. It also provides a simplified administrator experience by moving from Factor sequencing to Assurance Models. This new experience is simple … Continue reading Choosing Specific Factors in OIE with the API

Okta Custom Domain Configuration with Let’s Encrypt Certificates

This guide will walk through the process of changing your Okta URL to a custom domain. In this guide, I’ll be using my domain hogwartsadmin.com, which has been purchased through GoDaddy, Let’s Encrypt (TLS Certificate) and Google’s Dig for (DNS Lookup). Step 1: Decide on and enter custom domain name in your Okta Tenant Once … Continue reading Okta Custom Domain Configuration with Let’s Encrypt Certificates

Manage user devices authorised to access applications

Fine grained Device level authorisation was not really possible before devices became a first class citizen in the Okta Identity Engine. User Devices (with Okta FastPass installed) could always be Suspended or Deactivated in OIE (Directory → Devices), but this would prevent the user from using their device to access any applications in Okta. Suspend … Continue reading Manage user devices authorised to access applications

VMware Horizon Passwordless experience powered by Okta

-This Article is written for Lab demonstration purpose and some of the practice are not all recommended for production- As part of a customer requirement project, I was asked to proof/demo how Okta can help performing passworless experience in order to let their End Users to seemlessly access their Virtual apps and desktops from anywhere. … Continue reading VMware Horizon Passwordless experience powered by Okta