Okta Privileged Access (OPA) leverages with wider Okta Workforce Identity Cloud capabilities for many use cases. One of these integrations is with the Okta Access Requests components, that comes as part of the Okta Identity Governance (OIG) product, but also ships in a limited form with OPA. This article explores the two common use cases: … Continue reading Okta Privileged Access and Okta Access Requests
Tag: Governance
OIG Entitlement Management – A Technical Introduction
Okta continues to enhance the Okta Identity Governance product in the areas of Access Requests, Access Certification, and Governance reporting. However a significant update, Entitlement Management, was announced at Oktane23 and is currently in Early Access. This article provides a technical overview of the new Entitlement Management capability. What is Entitlement Management?Doesn’t Okta Already Do … Continue reading OIG Entitlement Management – A Technical Introduction
OIG Access Requests – Can I Attach a File?
A common requirement for access requests is adding a file to support the request. It may not be obvious, but Okta Identity Governance has the means to attach a file to a request. Let's explore this and show an example. How to Attach a File in the Access Requests Portal A file can be attached … Continue reading OIG Access Requests – Can I Attach a File?
OIG Access Requests – Posting Questions Based on Earlier Selections
My colleague, Rajesh Kumar, showed me something today that fell into the "wow, I didn't even think of using the product this way" category. It involves using logic in Access Request flows (Request Types) in Okta Identity Governance to prompt for additional information based on earlier selections. Let's look at how the user experiences it, … Continue reading OIG Access Requests – Posting Questions Based on Earlier Selections
OIG Access Requests and Workflows – Checking SoD In An Access Request
This article looks at a new approach you could use to perform Separation of Duties (SoD) checking from Okta Access Requests using Okta Workflows. It shows two approaches you could take to get SoD analysis into the request a soon as it's raised so that the reviewer has the information at hand before approving the … Continue reading OIG Access Requests and Workflows – Checking SoD In An Access Request
OIG Access Requests – Posting Additional Information into a Request
This article looks at a recent addition to the Okta Identity Governance (OIG) Access Request API that allows updating of in-flight access requests and can be used to add additional data to help reviewers review requests. Overview of the IntegrationAn Example Request With Additional InformationThe Mechanics of the IntegrationNew Requests API CallAccess Request Created Event … Continue reading OIG Access Requests – Posting Additional Information into a Request
User Access Reviews in Okta Identity Governance
This article explores the new user campaign (User Access Review) feature in Okta Identity Governance (OIG) Access Certifications. IntroductionSetting Up a User CampaignGeneral Set UpUsers SelectionResources StepReviewer StepRemediation StepRunning a User CampaignLaunching the CampaignCampaign ReviewMonitoring, Managing and ReportingConclusion Introduction The ability to build and run access certification campaigns against resources in Okta (groups and applications) … Continue reading User Access Reviews in Okta Identity Governance
OIG Access Requests – Calling an Okta Workflow from Within a Request Type
For some time there has been the ability to trigger a workflow in Okta Workflows from a request flow in Okta Access Requests via events written to the Okta System Log. Events were created for a request being initiated and being closed. But this approach has some limitations, such as a lot of processing within … Continue reading OIG Access Requests – Calling an Okta Workflow from Within a Request Type
New Reviewer Options in OIG Access Certification
There was a recent change to the reviewer selections for Okta Identity Governance (OIG) Access Certification to allow for more options and to simplify the administrative experience. The feature is currently an Early Access feature (the "Reviewer Assignment" enhancement) that can be turned on in an OIG-enabled Okta org. It will roll into production over … Continue reading New Reviewer Options in OIG Access Certification
Okta Identity Governance and/or Service Now – Architectural Patterns
Most organisations have some ITSM or service request tool, and ServiceNow is the most common. So it's understandable that any conversation about Okta Identity Governance, particularly access requests, will involve comparison with ServiceNow or integration patterns for both products. How do you approach an access request solution? Which product is going to meet your needs … Continue reading Okta Identity Governance and/or Service Now – Architectural Patterns