This page is for articles relating to the Identity Threat Protection with Okta AI (aka OITP or ITP) product.
Okta ITP Overview
Identity Threat Protection with Okta AI (ITP) is an Identity Threat Detection and Response (ITDR) product that continuously assesses user context and automatically respond to identity threats across your ecosystem.
The following figure shows the major components and integrations with the wider Okta Workforce Identity Cloud platform and external systems.
ITP takes feeds from first- and third-party systems, such as the Okta Workforce Identity platform, the Okta Dashboard/Admin Console actions, and Okta Verify sending device signals, and external systems via the Shared Signals Framework (SSF).
These are continuously analysed to detect changes in session- and entity-based risk and potentially re-evaluating authentication (global session) and entity policies. Changes may result in updates to the user profile in UD and events written to the System Log.
Policy can be configure to perform remediations that include triggering for MFA, performing universal logout, sending signals to downstream systems via SSF or running Okra Workflows.
You should check the Identity Threat Protection with Okta AI documentation for more details, the current list of features and integrations.
The Okta ITP articles on this site are listed below.
Okta ITP Posts
The following articles are specific to Identity Threat Protection with Okta AI.
The Okta ITP Workflows Connector
In May 2025 Okta released a Workflows connector for Identity Threat Protection with Okta AI, called the Okta ITP connector. This article is a brief walkthrough of the connector. Introduction With the release of Identity Threat Protection with Okta AI (ITP), new capabilities have been added to the Okta Workforce Identity platform for risk evaluation/detection…
Using Risk in Okta to Manage Privileged Access in OPA
Identity Threat Protection with Okta AI will continuously assess user context and automatically respond to identity threats across your ecosystem. This includes managing entity (user) risk levels. Okta Privileged Access does not explicitly have user risk built in, but user risk can be applied to control how users access privileged resources. This article looks at…
Device Logout for macOS
August 2025: This is an Early Access release Introduction In today’s fast-paced enterprise environment, ensuring the security of user sessions across devices is more critical than ever. With employees accessing corporate resources from multiple macOS devices—laptops, desktops, and shared workstations—organizations face increasing risks from unauthorized access, session hijacking, and compromised credentials. The Okta Device Logout…
“Enhancing Zero Trust with Okta Identity Threat Protection and Jamf Security: Continuous Access Evaluation Through Shared Security Signals”
Introduction In today’s rapidly evolving threat landscape, identity is the new security perimeter. Organizations face sophisticated cyber threats that target user credentials, exploit access gaps, and challenge traditional security measures. To stay ahead, IT and security teams need a proactive, intelligent approach to identity protection—one that not only detects threats but also responds in real…
Global Token Revocation – Auth0 Universal Logout integration with Okta
Auth0 has launched native support for Global Token Revocation and Okta’s Universal Logout functionality. This means that Auth0 applications now natively support the ability for federated Okta customers to automatically revoke all of the users sessions and tokens when Identity Threat Protection detects malicious or suspicious behaviour. Now, Auth0 powered applications can offer the same…
Okta AI agent for Natural Language Querying
Introducing the AI Agent for Okta This is a technical deep dive for the AI agent for Okta (created by Fctr) which is a powerful, open-source tool that lets IAM engineers, managers, and auditors query their Okta tenants using plain English. Get ready to streamline workflows, save countless hours spent scripting to create the necessary…
Enhancing Security with Okta Identity Threat Protection and Omnissa
Introduction In today’s rapidly evolving threat landscape, maintaining robust security while ensuring seamless access is a critical challenge for organizations. Continuous Access Evaluation (CAE), powered by Security Signal Sharing between Okta Identity Threat Protection (ITP) and Omnissa, introduces a revolutionary approach to adaptive threat response. By leveraging real-time data sharing and integration, this collaboration enhances…