Overview
The list below outlines any limitations or exceptions to specific features of an Okta product that are Audit-Ready, Supported, and/or Authorized for US Public Sector Service.
Okta Identity Governance
Identity Threat Protection
Workflows
Okta Identity Governance
- Customers running OIG for the Public Sector
- DoD IL4 authorized as of February 3, 2026
- FedRAMP High authorized as of January 27, 2026
- FedRAMP Moderate supported as of September 15, 2025
- Okta Identity Governance (OIG)
Below are services that have Federal variants that are not yet supported. These integrations were built using commercial versions of each vendor’s API and may not work with FedRAMP and DoD IL4 versions of those services.
The Okta team plans to address these gaps in late calendar year 2026.
Access Request and Access Certification Collaboration Tools
- MSFT Teams Notifications for Access Requests.
- These integrations were built using the commercial versions of the respective APIs and are not yet supported in our FedRAMP environments with the IL4/FRH/FRM versions of these apps. In the interim, users will still be able to receive notifications and submit approvals using email and the web UI.
- JIRA Integration for Access Request Request Types.
- ServiceNow Integration for Access Request Request Types.
- These integrations were built using the commercial versions of the respective APIs. Okta recommends, even for commercial customers, to use the workflows integration and JIRA/ServiceNow connectors to provide greater flexibility in what information is passed to these services. In our federal environments, JIRA/ServiceNow are roadmap connectors for the Workflows product, and customers can follow those timelines.
NOTE: For customers in Okta for Government Moderate for non-Fedramp purposes (for example, HIPAA environment support), they will be connected to a commercial cell for Okta Access Requests, which will be full-featured, similar to the structure used for Okta Workflows.
Entitlement Connectors
- On-Prem Entitlement Connectors (for example, SAP, Oracle EBS).
- The On-Prem Entitlement Connectors are not yet FedRAMP authorized and will not be available for purchase in the FedRAMP cells.
NOTE: Existing Entitlement Connectors work in both Commercial and FedRAMP.
Access Certifications
- LLM-generated summaries in Security Access Review are not currently available in compliance cells. It is planned for release in the future.
- Governance Analyzer with Okta AI.
- Governance Analyzer will not be available in the Federal cells when released to commercial customers. It is planned for release in the future.
- Governance Analyzer will not be available in the Federal cells when released to commercial customers. It is planned for release in the future.
Identity Threat Protection
Disclosures for Signal Detection Providers are Not Included in Regulated Cells
ITP Risk Detection is not authorized in Okta for Government High and Okta for US Military for:
- Suspicious login from an IP flagged by FastPass
- Suspicious login from an IP flagged in a credential-based attack
- Breached credential detected
Workflows
With the introduction of Workflows to Okta’s FedRAMP and DoD IL4, Okta is also including the full Connectors catalog that commercial customers use. Connectors are out-of-the-box integrations to a 3rd party vendor. They allow customers to connect to different APIs using productized event and action cards.
Most connectors were built using commercial versions of each vendor’s API and may or may not work with FedRAMP and DoD IL4 compliant versions of those services. The Okta team is currently testing and addressing these gaps to ensure all connectors in the applicable FedRAMP and/or DoD IL4 cell work as expected.
NOTE: The customer is responsible for connecting Workflows to appropriate systems, vendors, and APIs based on their compliance obligations, and the Customer accepts the risk of using any non-FedRAMP or DoD authorized or compatible Connectors with their Workflow service.
The Vendor Product/Feature FedRAMP Status column is illustrative and not intended to accurately represent FedRAMP authorization status. Customers are responsible for confirming the FedRAMP status of Vendor Products, which is available at the FedRAMP Marketplace site.
Please review this article frequently for the most up-to-date information on Connector compatibility.
Workflow Connectors
|
Vendor Product/Feature FedRAMP Status?* |
Vendor Product/Feature DoD IL4 Status? |
Workflows Connector compatible |
Requirements to integrate | |
|---|---|---|---|---|
|
Okta |
FedRAMP High |
IL4 |
Yes |
Enter the federal domain when creating a connection |
|
Okta Devices |
FedRAMP High |
IL4 |
Yes |
Enter the federal domain when creating a connection |
|
SFTP |
FedRAMP High |
IL4 |
Yes |
Enter the federal host and IP when creating a connection |
|
Azure AD |
FedRAMP High |
IL4 |
Yes - GCC High only | FRM/FRH, GCC High only |
|
O365 (Mail, Calendar) |
FedRAMP High |
IL4 |
Yes - GCC High only | FRM/FRH, GCC High only |
|
Excel Online |
FedRAMP High |
IL4 |
No | FRM/FRH, GCC High only |
|
OneDrive |
FedRAMP High |
IL4 |
No | FRM/FRH, GCC High only |
|
Microsoft Teams |
FedRAMP High |
IL4 |
No | FRM/FRH, GCC High only |
|
ServiceNow |
FedRAMP High |
IL4 |
No | |
|
Slack |
Slack is FedRAMP Moderate |
IL4 |
No | |
|
Slack Admin |
Slack is FedRAMP Moderate |
IL4 | No | |
|
Google Cloud Functions |
FedRAMP High |
IL4 |
No | |
|
Google Workspace Admin |
FedRAMP High |
IL4 |
No | |
|
Gmail |
FedRAMP High |
IL4 | No | |
|
Google Calendar |
FedRAMP High |
IL4 | No | |
|
Google Docs |
FedRAMP High |
IL4 | No | |
|
Google Drive |
FedRAMP High |
IL4 | No | |
|
Google Sheets |
FedRAMP High |
IL4 | No | |
|
AWS Lambda |
FedRAMP High |
IL4 | No | |
|
AWS Multi-Account Access |
FedRAMP High |
IL4 | No | |
|
AWS S3 |
FedRAMP High |
IL4 | No | |
|
Box |
FedRAMP Moderate |
IL4 | No | |
|
Smartsheet |
FedRAMP Moderate |
IL4 | No | |
|
Zoom |
FedRAMP Moderate |
IL4 | No | |
|
DocuSign |
FedRAMP Moderate |
IL4 | No | |
|
Oracle HCM |
FedRAMP Moderate |
IL4 | No | |
|
Oracle IAM |
FedRAMP Moderate |
IL4 | No | |
|
Splunk |
FedRAMP High |
IL4 | No | |
|
Workday |
FedRAMP Moderate |
No |
No | N/A |
|
Adobe User Management |
FedRAMP Moderate |
No |
No | N/A |
|
Duo Security Admin |
FedRAMP Moderate |
No |
No | N/A |
|
KnowBe4 |
FedRAMP Moderate |
No |
No | N/A |
|
Proofpoint |
FedRAMP Moderate |
No |
No | N/A |
|
Okta Identity Governance | No |
No |
No | N/A |
|
Okta Realms | No |
No |
No | N/A |
|
Netskope |
GovCloud FedRAMP High |
No |
No | N/A |
|
Advanced Server Access |
No |
No |
No | N/A |
|
AirTable |
No |
No |
No | N/A |
|
Atlassian |
No |
No |
No | N/A |
|
Asana |
No |
No |
No | N/A |
|
Auth0 |
No |
No |
No | N/A |
|
BambooHR |
No |
No |
No | N/A |
|
Citrix ShareFile | No |
No |
No | N/A |
|
Coupa | No |
No |
No | N/A |
|
DataGrail |
No |
No |
No | N/A |
|
Dropbox for Business |
No |
No |
No | N/A |
|
Evident ID |
No |
No |
No | N/A |
|
Freshservice |
No |
No |
No | N/A |
|
GitHub |
No |
No |
No | N/A |
|
Greenhouse |
No |
No |
No | N/A |
|
Harmony SASE |
No |
No |
No | N/A |
|
HubSpot CRM |
No |
No |
No | N/A |
|
IBM Cloud |
No |
No |
No | N/A |
|
Jamf Pro Classic |
No |
No |
No | N/A |
|
Jira |
No |
No |
No | N/A |
|
Jira Service Management |
No |
No |
No | N/A |
|
Lucidchart |
No |
No |
No | N/A |
|
Marketo |
No |
No |
No | N/A |
|
Mimecast |
No |
No |
No | N/A |
|
Mixpanel |
No |
No |
No | N/A |
|
No |
No |
No | N/A | |
|
Netsuite |
No |
No |
No | N/A |
|
OneTrust |
No |
No |
No | N/A |
|
OpenAI |
No |
No |
No | N/A |
|
Opsgenie |
No |
No |
No | N/A |
|
PagerDuty |
No |
No |
No | N/A |
|
Personio |
No |
No |
No | N/A |
|
Salesforce |
No |
No |
No | N/A |
|
SAP Analytics Cloud |
No |
No |
No | N/A |
|
SendGrid |
No |
No |
No | N/A |
|
SentinelOne |
No |
No |
No | N/A |
|
Shopify |
No |
No |
No | N/A |
|
SmartHR |
No |
No |
No | N/A |
|
SmartRecruiters |
No |
No |
No | N/A |
|
Snowflake |
No |
No |
No | N/A |
|
Tableau |
No |
No |
No | N/A |
|
Tenable Vulnerability Management |
No |
No | No | N/A |
|
Trend Micro |
No |
No |
No | N/A |
|
Zendesk |
No |
No |
No | N/A |
|
Zoho Mail |
No |
No |
No | N/A |
Vendor-Built Connectors
|
Connector Name |
Vendor Product/Feature FedRAMP Status? |
Vendor Product/Feature IL4 Status? |
Workflows Connector |
Requirements to integrate |
|---|---|---|---|---|
|
Addigy |
No |
No |
No | N/A |
|
Darwinbox |
No |
No |
No | N/A |
|
Cisco Identity Intelligence |
No |
No |
No | N/A |
|
Jamf Pro API |
No |
No |
No | N/A |
|
Kandji |
No |
No |
No | N/A |
|
Miro Administration |
No |
No |
No | N/A |
|
Miro User Management |
No |
No |
No | N/A |
|
Pendo |
No |
No |
No | N/A |
|
Recorded Future Identity Intelligence |
No |
No |
No | N/A |
|
Secure Code Warrior |
No |
No |
No | N/A |
|
SecureFlag |
No |
No |
No | N/A |
|
Yubico |
No |
No |
No | N/A |
If a specific connector is not available in the Connector catalog today, a custom one can be created using the Okta Workflows Connector Builder. The connector builder forum is also a resource for assistance.
Alternatively, suggestions for new vendors to be included in the catalog can be submitted via Okta Ideas.
________________________________**Any products, features, or functionality referenced in this material that are not currently generally available may not be delivered on time. Product roadmaps are not a commitment, obligation, or promise to deliver any product, feature, or functionality. Therefore, purchase decisions should not be based on them. Okta’s forward-looking statement applies to this article.
