User16370330549592969269 (Customer Support Online Experience) asked a question.
In December, we announced the general availability of Okta Privileged Access, a new powerful privileged access management (PAM) offering that helps elevate your security infrastructure and provide controlled access to your critical systems and data, whether on-premises or in the cloud.
We are excited to share more information about this offering and give you an opportunity to ask any questions you may have directly to our product experts. Whether you want to learn how to get started, manage and protect your privileged accounts credentials in Okta's Privileged Access vault, seek best practices and helpful resources, or learn more about upcoming features and enhancements, we are here to help.
Ask questions from today to Tuesday, February 27, 2024. Please use the Answer button below to ask your questions.
Come back on Wednesday, February 28, 2024, from 8 a.m. to 10 a.m. PST to join the online session as our Okta Privileged Access Product Experts answer your questions.
Want to learn more details about this AMA session? Check out this blog article -> https://support.okta.com/help/s/blog/a674z000000142gAAA/feb-28-ask-me-anything-with-okta-privileged-access-management-product-team?language=en_US
Can't wait, this topic is extremely important!
Will there be a live demo of OPA and some of the new functionality?
@TimF.42862 (Kyndryl) Please speak with your CSM to schedule a live demo to review latest features.
Do we need to sign-up/register to attend the online session on the 28th ? If so, please share the link, thank you!
@j4930 (j4930) this is not a webinar, but is a live Q&A. feel free to drop any questions you have into this page.
For customers using Advanced Server Access will there be any migration tools to help facilitate a move to Okta PA?
@RayA.69690 (Customer) The backend infrastructure for the two products are completely separate. We are currently working on bringing over a few features from ASA to OPA which are not yet present in OPA. Once those are in-place our goal is to provide customers with migration tools to streamline the process of moving over.
Would you please share any real-world scenarios where the platform has made a tangible difference in safeguarding sensitive systems and data?
@91rm1 (91rm1) We have added many additional capabilities to OPA - such as:
-Revamped the Administrative roles to provide for delegation and separation of duties
-Improved Policies which give additional conditional access controls such as Per-Attempt MFA and Access Requests
-Discovery and management of Privileged Account Passwords, including rotation
-Vaulting of Generic Secrets
-Improved auditing by integration with the Okta System Log
Examples of how these can be used in real-world scenarios are:
-Delegation of administrative duties to teams within a distributed/federated enterprise. Minimizing overhead and burden on a central team
-Requiring MFA upon each access attempt can guard against account takeovers and may be necessary to meet regulatory and compliance requirements for in-scope systems. Access Requests can act as an additional layer of protection by requiring a human-approver to grant access to resources further controlling access to sensitive systems.
-By protecting shared privileged accounts and builtin accounts with discovery and password management, we can ensure that these sensitive accounts have automatically rotated passwords and that users do not have standing access to these accounts. Additional controls such as MFA and Access Requests can be layers on top of this.
-Protection of Generic Secrets enables customers to eliminate insecure storage places and ensure that these sensitive bits of data do not become exposed.
-Improved System Log integration enables customers to effectively monitor for specific events and trigger actions or responses when they occur.
Can OPA ensure that Individual access policies are properly configured for non-human accounts, defining access rules and permissions?