okta briefing
TRANSCRIPT
![Page 1: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/1.jpg)
Application Training and
Briefing3 Jun 15
![Page 2: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/2.jpg)
What is OKTA?
The goal of OKTA is to provide:
1. Single sign-on for web applications2. Centralized Security3. Single point of access for all web applications
![Page 3: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/3.jpg)
In this, we’re going to be mostly concerned with the administration side of OKTA, the publishing of applications, and he security side.
There’s also more than a few reports we can generate out of it, and we’ll take a quick look at that as well.
![Page 4: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/4.jpg)
https://otterproducts.okta.com/app/UserHome
![Page 5: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/5.jpg)
In addition to accessing apps assigned to me . . .
If I click on my name, and go down to settings . . .
. . . I can change personal info.
![Page 6: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/6.jpg)
**********************
**********************
**********************
I can also change my windows password . . .
. . . And I can change my security image.
![Page 7: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/7.jpg)
You can edit you “Forgotten Password” question . . .
Provide yourself with some multi-factor authentication . . .
Change your display language (haven’t tried this).
![Page 8: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/8.jpg)
Couple of other things on the home page . . .
Home take you to the application page . . .
This let’s you know about your account status . . .
And when you download the “Okta Plug in” . . .
![Page 9: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/9.jpg)
You get a pull down of all the apps assigned to you . . .
![Page 10: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/10.jpg)
We’re mostly interested in the admin piece here, so if you’re an Administrator, you’ll have another button labeled “Admin”.
Click it!
![Page 11: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/11.jpg)
A word about Administrators . . .
There’s four kinds . . .
• Super: Can publish apps, add Administrators, do upgrades, and so on . . .and do so on an Enterprise level
• Organization: Limited to specific domains, and in some cases even OUs, but can still publish Apps, add users and so forth.
• Application: Can add users and make changes only to Applications they’re responsible for.
• Read-only: Like it says. ‘Nuff said.
![Page 12: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/12.jpg)
Dashboard gives a quick look at what’s
going on, and shortcuts to tasks
and reports . . .
Directory give access to
people, groups, and AD
integration
Applications is where apps are
created and users assigned . . .
Security handles just that, security
settings, and this also where
Administrators are assigned
Reports is just that. You can do things like
suspicious activity, users activity, and etc. . .
Settings is mostly admin stuff like
things notifications of lockouts, who to
call, etc . . .
![Page 13: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/13.jpg)
To Add an Application . . .
First off . . .
• Not all applications are created equally . . .
• Some work with Active Directory
• Some require an account/password created by a third party
• Some may not even be worth doing in OKTA
![Page 14: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/14.jpg)
To add an application . . .
Click “Applications”
. . . And then click “Add Applications”.
![Page 15: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/15.jpg)
There are hundred of prebuilt Templates, some by OKTA, others by OKTA community users. If
you know the name of your app, you can search for one simply by typing in the name in the
search bar.
Spiceworks
![Page 16: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/16.jpg)
This one is simple . . .
![Page 17: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/17.jpg)
Select users or Groups . . .
![Page 18: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/18.jpg)
Click done . . .
Once done, you can click the App, add people and or groups . . .
![Page 19: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/19.jpg)
Trick of the Trade: to select users assigned Place the checkmark in the box at the top . . .
![Page 20: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/20.jpg)
Then click “Confirm Assignment . . .
![Page 21: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/21.jpg)
Next time the user logs in, they’ll get notice of a new App assigned them . . .
![Page 22: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/22.jpg)
Other apps . . .
There are some that are a bit more complicated, and the majority of these involve paid for apps.
These will required some degree of coordination with however we “Subscribe” to.
Term I’m hitting you with: SAML!
• Security Assertion Markup Language (SAML, pronounced sam-el[1]) is an XML-based, open-standard data format for exchanging authentication and authorization data between parties, in particular, between an identity provider and a service provider.
![Page 23: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/23.jpg)
Anatomy of an App that will play with SAML . . .
Info the vendor will probably have to give you . . .
![Page 24: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/24.jpg)
Type of template used, and this info is what you’ll have
to five them . . .
![Page 25: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/25.jpg)
The vendor will usually have to take information provided here (like the certificate data) and put it in their end.
This is part of what makes this possible.
![Page 26: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/26.jpg)
Quick Look Actual reports
![Page 27: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/27.jpg)
![Page 28: OKTA Briefing](https://reader036.vdocument.in/reader036/viewer/2022081415/55d10f70bb61eb68078b4748/html5/thumbnails/28.jpg)
And that, in a nutshell, is OKTA . . .
QUESTIONS?