A Set of Utilities for Secrets Management in OPA

In a recent engagement a customer raised issues around management of secrets and folder,s and associated policies and users in their Okta Privileged Access (OPA) deployment. In the spirit of the mantra of Mr Bigweld in Robots "see a need, fill a need", I set about writing some utilities to help manage larger, more-complex Secrets … Continue reading A Set of Utilities for Secrets Management in OPA →

New Secrets Search Function in Okta Privileged Access

Okta has introduced a new search function for Secrets in Okta Privileged Access (OPA). When an OPA user goes to the Secrets menu item, they will see a new search option. Typing in a search argument will show matching secrets with the secret name, Folder hierarchy (clickable breadcrumb), Resource Group / Project and Description. You … Continue reading New Secrets Search Function in Okta Privileged Access →

Implementing an Offline Password Vault with Okta Privileged Access and KeePassXC

Okta Privileged Access is a SaaS offering. Currently it does not have an offline mode for local storage of break glass credentials. But you can extend it to do so, and that's the subject of this article. We look at a simple mechanism to export secrets from a folder and push them into a local … Continue reading Implementing an Offline Password Vault with Okta Privileged Access and KeePassXC →

Automating Individual Secret Folders in OPA with Workflows

Okta Privileged Access has a secrets function, where a folder hierarchy can be built and policies applied to allow groups of users to access shared secrets. Whilst it's not it's primary use case, it could also be used to provide an individual secrets folder mechanism where users in Okta could have their own personal secrets … Continue reading Automating Individual Secret Folders in OPA with Workflows →

Using the Secrets API with Okta Privileged Access

Okta Privileged Access has the ability to store and retrieve generic secrets in it's vault. This can be done via the user interface, the sft client in the command line or via the Secrets API. This article will explore the Secrets API for managing secrets in the vault. Overview Secrets management involves both folders (and … Continue reading Using the Secrets API with Okta Privileged Access →

Introducing Secrets Management in Okta Privileged Access

This article explores the new secrets management capability within Okta Privileged Access. Introduction to Secrets ManagementThe Vault, Secrets and FoldersResource Administration and Security PolicyAn Example of Generic Secrets ManagementThe configuration in Okta and Okta Privileged AccessOkta Users and GroupsResource Groups and ProjectsDefining Top-Level Folders as the SecretAdminDefine Secrets PoliciesManaging Folders and SecretsUser (Linux Sysadmin) ViewConclusion … Continue reading Introducing Secrets Management in Okta Privileged Access →