The Okta Community Ask Me Anything with the FastPass Engineering and Product Teams was packed with insightful questions about how organizations can deploy Okta FastPass to become phishing resistant. In case you missed it, below is a quick summary of what we covered. You can also read through all the questions and detailed answers provided by our product experts by visiting the Okta FastPass AMA discussion thread. 

Key Highlights:
 

• Best practices for deployment: We received a lot of questions about deployment best practices. Since an increasing number of customers are deploying FastPass, this was expected. Customers are excited about deploying FastPass in their organizations and asked several questions about smooth deployment.

• Understanding the technical details and value of Okta FastPass: There were several questions from the technical and security-focused administrators asking questions to understand better how FastPass works and how they can leverage other Okta products such as Workflows or how to integrate with third-party security vendors such as XDR vendors, etc. These people got their questions answered and are now better enabled to make superior decisions for their organizations.

• New feature requests, product improvement requests, and platform support: Many customers, satisfied with their current rollout, asked about additional platform support, such as Linux and VDIs (which we are working on). Customers also asked for several new features. We learned a lot from this AMA and have a better understanding of customer needs, which we will use to prioritize our product roadmap.
   
• Other topics: 
  • Additionally, we got several unique questions from various industry sectors asking about FIPS and FedRamp compliance, handling multiple accounts in the same and different tenants, mobile vs desktop differences, ease of use from the end-user perspective, etc.
  • There are knowledge gaps among admins on the security of FastPass / phishing resistance vs. more familiar but less secure factors such as TOTP/Push. Device Assurance would be a great way to highlight this.
  • FastPass is also considered more complex and less mature than familiar ones like TOTP/Push. Given that FP is required for Device Assurance, every FP deployment blocker should be considered a device assurance blocker.

is your one-stop shop to find documentation, articles, questions, guides and more on FastPass. We have several resources to help you no matter where you are in your journey with deploying FastPass.

What’s next: 

Join the Okta Privileged Access Management Community AMA on February 28, 2024, with Okta product experts. Ask questions here.