🚀 New Feature Announcement: ITP CrowdStrike SSF Integration 🚀

We're thrilled to announce the General Availability of the Okta and CrowdStrike Shared Signals Framework (SSF) integration. This is an important release that highlights our "better together" story and strengthens our position in the identity security/ITDR market.

What does it do?

This integration allows ITP to receive rich, real-time threat signals from CrowdStrike. By combining these signals, security teams get a unified view of threats across the identity layer and the endpoint, enabling faster and more intelligent threat detection and response. 

How does this differ from what we previously offered with the Okta Verify integration?

• Customers have 2 options :
• Okta Verify + CrowdStrike: Okta Verify continuously checks the CrowdStrike ZTA score of the device. If the score changes, Okta can deny access or prompt the user to re-authenticate.
• SSF Integration: CrowdStrike's platform can send security signals directly to Okta through a backend channel, without needing the Okta Verify app on the user's device.

 How does this benefit customers?

• For C-level leaders (CIOs/CISOs): It provides a more complete security posture by eliminating blind spots between identity and endpoint threats, which significantly reduces risk and maximizes the value of their existing security investments.
• For practitioners (Security/IT Admins): It accelerates detection and response by enabling automated actions based on the signals ITP receives from CrowdStrike. Things like step-up authentication or suspending a user's access to sensitive apps.

 What are the minimum requirements?

• Requires CrowdStrike Falcon Fusion SOAR platform. Customers also need one of these CrowdStrike licenses: IDP Zero Trust or Paid NG-SIEM.

Hi everyone 👋

we have great news for you.

We're excited to announce our Device Logout for macOS now feature now in Early Access🚀

The Device Logout for macOS feature combines both Okta Device Access (ODA) and Identity Threat Protection (ITP).

This powerful integration gives you the ability to remotely sign users out of all their macOS devices.

How it Benefits Customers:

• Kick compromised users off all ODA protected macOS devices
• Block identity threats like session hijacking
• Integrate with third-party security alerts
• Auto-logout for offboarding & leaves of absence

Curious?

Then take a look at our official blog post and also an article about it on IAMSE.

Hi everyone!

It’s Mid-Year Launch Week at Okta, and we’re rolling out new innovations to help you protect every identity — from human to non-human, to AI agent. You can get the full overview of what’s new across the platform by reading our blog post here.

If you’re particularly interested in Identity Threat Protection, you’ll want to check out our latest enhancement: Identity Threat Protection with Okta AI. This release is all about protecting your most sensitive accounts — especially top admins — with smarter, real-time threat detection and response. It includes four powerful new features that enable coordinated responses across your entire tech stack.

Want the full details? Check out the announcement here.

Have questions or want to learn more? Drop a comment below and we will be happy to loop in the product team!

New Feature - Custom Admin Roles for ITP

Okta has extended the custom admin roles feature to support Identity Threat Protection with OktaAI.

ITP currently requires Super Admin access, which makes it difficult to delegate critical ITP tasks without violating the principle of least privilege. Custom Admin Roles address this by enabling Role-Based Access Control (RBAC) within ITP. This means customers can adhere to the principle of least privilege and avoid overly permissive roles – a highly requested feature by our amazing customers!

For more information see the Configure custom admin roles for ITP page in the help docs.

Coming Up: Identity Threat Protection AMA – March 25!

Curious how Okta Identity Threat Protection (ITP) uses AI to help detect and stop threats in real time? Don’t miss our upcoming Ask Me Anything — your chance to dive into how it works, explore best practices, and get answers to your toughest security questions.

✅ Watch the quick video overview

✅ Post your written questions here anytime before March 25

Then, join us March 25 for written responses directly from our Okta product experts.

🎯 Whether you’re tackling specific security scenarios or just exploring what’s possible with ITP — we’ve got you covered.

March 25 Ask Me Anything: Identity Threat Protection

We’re excited to invite you to our next online Ask Me Anything (AMA) session on Tuesday, March 25, 2025!  This session will dive into how Okta’s Identity Threat Protection (ITP) with AI helps organizations continuously safeguard against identity-based threats post-authentication by detecting and responding to risks in real time.

Okta product experts will be answering your questions - whether it’s about:

✅ Mitigating advanced cyberattacks through detection and response.

✅ Ensuring compliance with continuous monitoring and reporting.

✅ Preventing session hijacking by assessing risks throughout user sessions.

✅ Supporting Zero Trust architecture to prevent unauthorized access.

✅ Leveraging the Shared Signals Framework (SSF) to enhance security across multiple threat surfaces.

How does the AMA work?

Our product experts will be answering your questions with detailed written responses on March 25. Post your questions here, and stay tuned for their insights!