SteveF.61090 (Customer) asked a question.
What Okta Groups/RBAC best practices are you using?
We've been using Okta for some time now, but have been assigning apps to individuals or creating generic app groups. I'm considering creating role specific permissions in Okta where everyone in that role will be assigned and the apps that they need access to are assigned. OIG and similar access requests systems seem to go the route of creating app groups where individuals can request access. I'm curious how everyone is implementing some level of RBAC within Okta.
Hi, @SteveF.61090 (Customer)
Thank you for posting on our Community page!
Here is an article that might help:
https://support.okta.com/help/s/article/Requesting-Roles-Through-OIG-Access-Requests?language=en_US
We'll leave this question open for other members to chip in with their experience.
Thank you for reaching out to our Community and have a great day!
_____________________________________________________________________________
Community members help others by clicking Like or Select as Best on responses. Try it today.
_____________________________________________________________________________
Thanks. What I'm looking for is advice on best practices for implementing RBAC.
For example, the approach I'm currently taking is:
Group (individual role - for example, customer success manager)
The other approach could be:
Groups (individual apps with specific permissions)
The difference is how I use groups. Is there another approach or is one of the above approaches considered a best practice or better than the other?