Okta Device Integration with Workspace ONE
Introduction You can ensure that devices are managed by an endpoint management (in my example Workspace ONE) tool before end users can access apps from the device. Devices are managed if they meet these conditions: For desktop (Windows, macOS), management attestation certificates are deployed to the device with VMware Workspace ONE UEM. Prerequisites Configure management attestation…
Integrating VMware Identity Services with Okta
VMware Identity Services is a relatively new service that allows organizations to centrally manage their cloud-based identities in Workspace ONE from a single interface. This streamlines the process and reduces the risk of errors. The service uses SCIM to automate the process of adding, updating, and removing user accounts and groups from SCIM 2.0 identity…
Okta Device Access – Desktop MFA for macOS
This is an Early Access feature! Okta Desktop MFA for macOS adds an extra layer of security to the macOS sign-in process by asking users for additional authentication before allowing computer access. In this blog we show you how to configure Desktop MFA in the Okta Admin Console, and then deploy it through VMware Workspace ONE. Technical Prerequisites Create…
Okta Device Access – Desktop Password Sync for macOS
Update Nov 2023 – Added custom settings XML. Updated to reflect that this feature is now GA. Introduction With macOS Ventura, Apple introduced Platform SSO, which enables developers to create a single sign-on (SSO) extension that interacts directly with the macOS login window. This extension enables users to link their local macOS account with their…
Okta enrolled factor verification tool for Helpdesk to reset password/factors using Okta workflows and Slack modal
Prerequisite: Problem statement: Okta enables selfservice to reset your password. This requires some high assurance factor for verification. Also some times they need to reset factors which does not have a way to do self service. If a end user calls Helpdesk to reset their password or factors. They always require the user to verify…
Okta Desktop MFA for Windows
This is an Early Access feature. To learn how to enable it, see Manage Early Access and Beta features. The use of Okta’s Desktop MFA for Windows strengthens the security of a user’sauthentication of Windows computers.This customizable solution is designed to configure the sign- in flow into a Windows workstation. This secured sign-in flow will…
Enable Okta for VMware vCenter Server
In today’s security landscape, identity management and multifactor authentication (MFA) are crucial components. The latest release of vSphere, vSphere 8 Update 1, introduces support for cloud-based identity providers in vCenter, including the widely used Okta service. With this new capability, vSphere administrators can leverage modern identity management features for enhanced security and streamlined operations. Prerequisites…
Creating a Twilio Messaging Connector with Workflows Connector Builder
Okta has just made generally available its Workflows Connector Builder and I am writing this post to celebrate. Okta’s Workflow Connector Builder delivers the powerful concept of reuse to your Workflows. It allows you build connections and actions once for re-use throughout all of your Workflows. Additionally, it gives vendors the opportunity to build and…
Bring Your Own Messaging Provider: WhatsApp OTP with Inline Hooks & Workflows
Okta’s Identity Engine introduced an Inline Hook for Telephony effectively allow you to replace Okta’s inbuilt SMS solution with your own provider. This empowers customers to manage their own numbers and providers around the world allowing for cost and delivery optimisation. It also paves the way for adding additional channel options for OTP messages. Messaging…
Secure your VMware Web Proxy access with Okta
Overview / Prerequisites In this blog I want to guide you through the process how we can integrate Okta as the IdP with VMware Web Proxy and how the User Experience looks .I will not cover how to create a Security Policy on the VMware side, but you can read this basic steps in my…
Phishing Resistant Authenticators in action through Okta Fastpass
In this blog, I will showcase how Okta is able to prevent and stop phishing attempts crafted by EvilGinX (MiTM) to your end users. Aside from preventing the phishing attempt, Okta can also be configured to orchestrate back-end orchestration flows that will raise awareness to your end users and also deliver a SecOps capability.
VMware SD-WAN Orchestrator Single Sign-On powered by Okta
In this article I would like to describe how to integrate the Okta into the SD-WAN Orchestrator and using Single Sign On (SSO) with different user types. VMware SD-WAN Orchestrator provides centralized, enterprise-wide installation, configuration, and real time monitoring, in addition to orchestrating the data flow through the cloud network. Prerequisites Configure Okta for Single Sign…
Fixed Recovery Questions with Workflows
Recently an Okta customer was interested in being able to set a fixed Recovery Question for a subset of its employees. In particular they wanted to use an attribute from their source of truth as a security answer. Having a fixed security question and answer based on an employee attribute does have security drawbacks however…
Okta Devices SDK Sample App
Powered by the Okta Devices Platform Service, the Okta Devices SDK and the Devices API offer a single integration to unify user identity and device identity, along with all of the tools necessary to build passwordless sign-in flows through branded push notifications and biometric capabilities. All of these powerful functionalities come together to deepen security…
Enforcing device assurance on unmanaged devices (BYOD)
One of the biggest challenges for organisations is being able to increase the security posture of their employee’s BYOD devices while respecting their privacy and improving their user experience. Okta announced recently the new feature called Okta Device Assurance which allow organisations to increase the posture of their BYOD’s users leveraging Okta Verify Application. Until…
Optimising Twilio Flex Licensing with Okta Workflows
Twilio Flex, Twilio’s contact centre solution, supports SAML 2.0 for Agent and Supervisor provisioning and access. Users are provisioned Just In Time into TaskRouter workers with skills and attributes created or updated when a user logs in. Unfortunately Twilio provides no standard way of de-provisioning users. This means that Flex licenses may continue to be…
Access Certification for In-active application users
How can you leverage Okta Workflows and Identity Governance to review in-active users in your application
Getting Started with Okta
Okta provides cloud software that helps companies manage and secure user authentication into applications, and for developers to build identity controls into applications, website web services and devices (see wiki). See this great introductory video too. The purpose of this article is to detail my experience in getting started with the Okta (Identity Engine or…
Choosing Specific Factors in OIE with the API
Okta Identity Engine provides increased flexibility for Authentication with Application Level Policies and easy to configure passwordless sign-in experiences. These are covered extensively in our deployment guides: Authentication policies deployment guide and Passwordless authentication deployment guide. It also provides a simplified administrator experience by moving from Factor sequencing to Assurance Models. This new experience is simple…
Okta Custom Domain Configuration with Let’s Encrypt Certificates
UPDATE 11/09/2023: Okta has now the let’s encrypt option built in. You can register your customer domain as per below. If you had a let’s encrypt domain certificate simply delete the domain and register it again following the steps below: This guide will walk through the process of changing your Okta URL to a custom…
Loading…
Something went wrong. Please refresh the page and/or try again.