A Brief Intro to SoD with OIG

Okta has just released a separation of duties feature into Okta Identity Governance. This article provides a brief introduction to the feature. IntroductionConfiguring SoD RulesRequesting Access with SoD ChecksRecertifying Access with SoD ViolationsReporting with SoDConclusion Introduction Separation of Duties (or Segregation of Duties, or more commonly SoD) has been a standard control for identity governance … Continue reading A Brief Intro to SoD with OIG →

Importing Entitlements for Disconnected Apps in OIG

Okta recently introduced a new feature into Okta Identity Governance for importing users and entitlements for disconnected apps via a CSV import. This article explores the new feature. IntroductionConfigurationStep 0 - Enable the FeatureStep 1 - Create New App Instance in OktaStep 2 - Define additional app user profile attributesStep 3 - Enable the Governance … Continue reading Importing Entitlements for Disconnected Apps in OIG →

An Introduction to Resource Collections in OIG

This article introduces the new Resource Collections feature in Okta Identity Governance, looking at how collections are defined, requested and reviewed. Introduction Okta has introduced a new feature into Okta Identity Governance (OIG) called Resource Collections (or sometimes referred to as just Collections). They are a way to define a role that spans different entitlements … Continue reading An Introduction to Resource Collections in OIG →

Governance for Okta Privileged Access Server Resources

This document describes the approach and mechanism to run a certification campaign to review Okta Privileged Access Resource (Server) access. Introduction Overview The Aim of the Solution How the Solution is Built Building Okta Privileged Access Sync Connector OPA Data Sync Steps Step 1: Okta Application Setup Step 2: Setup Workflow Step 2.1 Create Connections … Continue reading Governance for Okta Privileged Access Server Resources →

The Combined Power of Okta Privileged Access and Okta Identity Governance

This article looks at the benefits of combining Okta Privileged Access with Okta Identity Governance to reduce the risk of using privileged accounts and access. IntroductionUsing Okta Identity Governance to Enhance Okta Privileged AccessJust-in-time Access ApprovalAccess Requests for OPA AccessAccess Certification for OPA AccessEnhancing the Information Available to ReviewersLeveraging Okta WorkflowsSaaS Service Accounts and OIN … Continue reading The Combined Power of Okta Privileged Access and Okta Identity Governance →

Okta Entitlements for Disconnected Applications – Dynamic Entitlement Bundle Assignments

OVERVIEW This blog is a continuation of the Okta Entitlements for Disconnected Applications - Dynamic Entitlement Bundle Creation that I posted previously. Some of the introductory content is duplicate to reenforce some of the basic concepts around Okta Identity Governance – Entitlement Management.With the release of Okta Identity Governance, one of the newly released features is entitlements … Continue reading Okta Entitlements for Disconnected Applications – Dynamic Entitlement Bundle Assignments →

Okta Entitlements for Disconnected Applications – Dynamic Entitlement Bundle Creation

OVERVIEW This blog is a continuation of the Okta Entitlements for Disconnected Applications that I posted previously. Some of the introductory content is duplicate to reenforce some of the basic concepts around Okta Identity Governance - Entitlement Management. With the release of Okta Identity Governance, one of the newly released features is entitlements at the … Continue reading Okta Entitlements for Disconnected Applications – Dynamic Entitlement Bundle Creation →

Okta Entitlements for Disconnected Applications

OVERVIEW With the release of Okta Identity Governance, one of the newly released features is entitlements at the application level. Entitlements open a deeper level of represented access for Access Reviews, Access Certification Campaigns and Access Requests through the representation of fine grain access and licensing that a given user has in a relationship to for … Continue reading Okta Entitlements for Disconnected Applications →

Unleashing Precision: Enhancing Salesforce User Access Reviews with Custom Okta Entitlements Management

Introduction In the ever-evolving realm of user access and security, the marriage of Okta and Salesforce presents a powerful synergy. While Okta's out-of-the-box (OOTB) connector for Salesforce Governance is undoubtedly a valuable asset, it falls short when it comes to the nuance of fine-grained access certification. Picture this common scenario: reviewing a Profile or Permission … Continue reading Unleashing Precision: Enhancing Salesforce User Access Reviews with Custom Okta Entitlements Management →

Managing custom entitlements or Bring Your Own (BYO) entitlements using Okta Identity Governance (OIG) Entitlement Management

Introduction Okta Identity Governance (OIG) Entitlement Management feature supports managing entitlements out of the box for these provisioning-enabled apps in the Okta Integration Network (OIN). This list will grow with time, however it is also possible to manage entitlements to applications not in this list using its APIs. This blog post takes a look at … Continue reading Managing custom entitlements or Bring Your Own (BYO) entitlements using Okta Identity Governance (OIG) Entitlement Management →