This page is for articles relating to Okta Identity Governance (OIG) Access Requests function.
OIG Access Requests Overview
Access Requests is the component of OIG that came from the atSpoke acquisition (you may hear the term “atspoke” or “inbox” used to refer to this component). As it is a new function with some unique capabilities, it makes sense to consolidate all OIG Access Requests articles here.
The following figure shows how Access Requests works in the wider Okta Identity Governance ecosystem.
Access Requests integrates with the Okta Identity Cloud (Okta) to retrieve users, groups and application lists, and also it runs actions in workflows that will update (or retrieve) objects in Okta Universal Directory (e.g. add user to group, assign user to application).
Access Requests can also integrate with ITSM tools like ServiceNow and Jira to log tickets.
Users (including access request reviewers, such as managers, and administrators) may interface directly with Access Requests through the user interface, or via a chat bot in Slack/Teams. In the wider Okta picture, all of these could be SSO’d to from the Okta Dashboard.
OIG Access Requests Posts
The following articles are specific to OIG Access Requests.
New Delegate Feature in OIG
Okta has recently released a delegate feature in Okta Idenity Governance. This feature allows all governance activity, such as reviewing access requests or access certifications, to another Okta user (optionally for a set period). This article introduces the new feature. Introduction We all need to go on leave or take time off. So what happens…
The New Unified Requester Experience in OIG
This article introduces the new Access Requests – Unified Requester Experience that is currently rolling out as an Early Access feature in Okta Identity Governance (OIG). The Background As Okta was building its new Identity Governance and Administration (IGA) product, it acquired a company to provide what would become the Access Requests component of Okta…
Privileged Access Management for Microsoft Active Directory with Okta
Microsoft Active Directory is pervasive across industry, and thus a common target for hackers, particularly with the abundance of privileged accounts. In this article we look at how the Okta Workforce platform can use different approaches to managing privileged access and reducing the risk of these accessed. It includes just-in-time provisioning of access and dynamic…
A Brief Intro to SoD with OIG
Okta has just released a separation of duties feature into Okta Identity Governance. This article provides a brief introduction to the feature. Introduction Separation of Duties (or Segregation of Duties, or more commonly SoD) has been a standard control for identity governance for a quarter of a century. The concept is that a user should…
Importing Entitlements for Disconnected Apps in OIG
Okta recently introduced a new feature into Okta Identity Governance for importing users and entitlements for disconnected apps via a CSV import. This article explores the new feature. Introduction Okta has had the ability to import users via a CSV file for a long time. This has been an effective way to bulk load users…
An Introduction to Resource Collections in OIG
This article introduces the new Resource Collections feature in Okta Identity Governance, looking at how collections are defined, requested and reviewed. Introduction Okta has introduced a new feature into Okta Identity Governance (OIG) called Resource Collections (or sometimes referred to as just Collections). They are a way to define a role that spans different entitlements…
Reduce Risk through Governance for Okta Administrators
In this article we explore the different patterns for associating users with administrative roles and how we can reduce the risk around these using governance. There are multiple articles listing the controls that should be applied to the administrative access in Okta, but this article will focus on the governance controls. Introduction Okta administration is…
Governance for Okta Privileged Access Server Resources
This document describes the approach and mechanism to run a certification campaign to review Okta Privileged Access Resource (Server) access. Introduction The solution captured in this document is to demonstrate the power of the Unified Identity platform. The focus of this document is to provide the ability for our customer to enable self-service to request…
The Combined Power of Okta Privileged Access and Okta Identity Governance
This article looks at the benefits of combining Okta Privileged Access with Okta Identity Governance to reduce the risk of using privileged accounts and access. Introduction Both Okta Privileged Access (OPA) and Okta Identity Governance (OIG) are part of the Okta Workforce Identity Cloud platform (Okta WIC). OIG is focussed on governing identities – having…
Something went wrong. Please refresh the page and/or try again.