Okta announced today that it will be expanding its platform to include a few new areas. Until then, the company was known for its Identity Access Management product, which enables companies to log into multiple cloud products with a single login. Today the company is moving in two new areas: privileged access and identity governance
With privileged access, companies can grant a limited number of people access to key administrative services within a company as needed. This can be your database or your servers or a part of your technology stack that is very sensitive and where you want to control exactly who can access these systems.
According to Todd McKinnon, Okta CEO, Okta has always been good at blocking users’ general access to cloud services like Salesforce, Office 365, and Gmail. What these cloud services have in common is that you can access them via a web interface.
Administrators access the special accounts using various protocols. “It’s like a secure shell, or you use a terminal on your computer to connect to a server in the cloud, or it’s a database connection that you actually log into or connect to with an SQL connection to a manufactured container, which is the Kubernetes protocol to actually manage the container, ”said McKinnon.
Privileged access offers some important features, including the ability to restrict access to a specific time slot and record a video of the session so that it can be checked exactly what happened while someone was accessing the system. According to McKinnon, these features provide additional layers of protection for these sensitive accounts.
He says that creating these accounts will be pretty trivial as Okta has already divided users into groups and can only grant those special permissions to the people in the admin access group. The challenge was figuring out how to access these other types of logs.
The governance element provides security operations teams with the ability to generate detailed reports and search for identity-related issues. “Governance provides exception messages so you can give them to your auditors, and most importantly your security team, to make sure you find out what is going on and why there is this deviation from your stated policy,” he said.
All of this, combined with the $ 6.5 billion acquisition of Auth0 last month, is part of a larger plan for the company to be what McKinnon calls the Identity Cloud. He sees a market with multiple strategic clouds and believes identity will be one of them.
“Because identity is so strategic for everything, your customer will be activated, the access, the access of your employees will be activated and everything will be secure. And so that extension, whether it’s a customer identity without trust or whether it’s more about the identity of the workforce, is not just about access but also about privileged access and identity management. It’s about identity evolving in this primary cloud, ”he said.
Both new products were unveiled today at the company’s Octane virtual customer conference. However, they will not be generally available until the first quarter of next year.