This page is for articles relating to the new Okta Privileged Access product.
Okta Privileged Access Overview
Okta Privileged Access (OPA) is Okta’s Privileged Access Management (PAM) product. It continues the journey started with Okta Advanced Server Access for infrastructure access and extends into other privileged resources, such as application secrets and cloud platform entitlements. The current set of resources managed by OPA (at Aug 2025) is shown below (note that it also covered other PAM use cases tied to other Okta products).
The following figure shows the major components and integrations with the wider Okta Workforce Identity Cloud platform and external systems.
The solution leverages new Okta Privileged Access components, components carried over from Okta Advanced Server Access, and other Okta components such as the platform and Okta Identity Governance. More information can be found in an introduction article (also listed below).
Okta Privileged Access Posts
The following articles are specific to Okta Privileged Access.
Recent Updates to Okta Privileged Access – Oct 25
There have been a number of features released for Okta Privileged Access over the recent months, some major and some minor, but may have been lost in the excitement of Oktane 25. This article provides a summary of all the changes release. Introduction The last two quarters have been very busy for Okta Privileged Access…
Using Risk in Okta to Manage Privileged Access in OPA
Identity Threat Protection with Okta AI will continuously assess user context and automatically respond to identity threats across your ecosystem. This includes managing entity (user) risk levels. Okta Privileged Access does not explicitly have user risk built in, but user risk can be applied to control how users access privileged resources. This article looks at…
RDP’ing with Microsoft Active Directory Accounts in OPA
Okta is extending it’s Okta Privileged Access capabilities with Microsoft Active Directory accounts by adding the ability to leverage them in direct RDP connections. This means it now supports two use cases with AD accounts – a reveal function where those credentials can be used (via copy’n’paste) to any AD-authenticated service, and the new direct…
A Set of Utilities for Secrets Management in OPA
In a recent engagement a customer raised issues around management of secrets and folder,s and associated policies and users in their Okta Privileged Access (OPA) deployment. In the spirit of the mantra of Mr Bigweld in Robots “see a need, fill a need”, I set about writing some utilities to help manage larger, more-complex Secrets…
New Secrets Search Function in Okta Privileged Access
Okta has introduced a new search function for Secrets in Okta Privileged Access (OPA). When an OPA user goes to the Secrets menu item, they will see a new search option. Typing in a search argument will show matching secrets with the secret name, Folder hierarchy (clickable breadcrumb), Resource Group / Project and Description. You…
Privileged Access Management for Microsoft Active Directory with Okta
Microsoft Active Directory is pervasive across industry, and thus a common target for hackers, particularly with the abundance of privileged accounts. In this article we look at how the Okta Workforce platform can use different approaches to managing privileged access and reducing the risk of these accessed. It includes just-in-time provisioning of access and dynamic…
Okta Privileged Access – Example Mechanisms to Export/View Session Recordings
This article provides some example mechanisms that could be used to export and view the session recording files produced by Okta Privileged Access. There are two examples shown: These are provided as examples to show how you could implement a mechanism. Introduction Okta Privileged Access (OPA) and it’s predecessor Okta Advanced Server Access (Okta ASA),…
Integrating Active Directory with Okta Privileged Access
Okta has recently released their Microsoft Active Directory (AD) integration with Okta Privileged Access. This allows AD admin accounts to be stored in the vault and exposed via policy for use when accessing AD-authenticated services. This article provides a brief overview of the new feature. What Is It? Put simply, the new feature allows Microsoft…
Privileged Access Management for Federated Users
This document describes the approach and mechanism to authorize users to access Okta Privileged Access (OPA) and protected resources. Introduction This document outlines a solution for managing access for federated users, specifically from business partners, vendors, subsidiaries, or sister companies, to applications and resources protected by Okta Privileged Access. This document focuses on addressing business…
Something went wrong. Please refresh the page and/or try again.