SimonW.54844 (Customer) asked a question.
Information Security - Access to Yubikey for a small helpdesk
Hi Team
We work in a large corporate organisation and have specialist areas that work with clients who connect via OKTA using YubiKey
The problem we are facing is that to re issue or remove a Yubikey you must have high level admin credentials
Is there a way to have a custom job role or is there any existing job role that allows Yubikey deletion, and re adding via seed file but without all the other admin access
Regards
Simon
My name is Daniel and I'm happy to assist you in this matter today.
While there is not a way to 100% custom make an admin role with exactly those tasks and nothing further for an individual, we do have a plethora of base admin roles and those rules can be edited. However, they're not edited for a single individual, but for any users with that role.
For what you're looking for, an Org Admin is probably the best place to start. Below are links to a list of admin types and their permissions, as well as a link on editing admin permissions.
https://help.okta.com/en/prod/Content/Topics/Security/administrators-admin-comparison.htm
https://help.okta.com/en/prod/Content/Topics/Security/administrators-edit-revoke-admins.htm