Okta

Overview

Okta is an Identity Management solution that can be integrated with Firefly to fetch Okta applications, groups, and other assets for governance purposes. This integration enables you to ensure Okta apps have specific settings, maintain a unified view of SaaS app configurations, and monitor and govern your identity management assets.

Prerequisites

  • Okta account with administrative access

  • Ability to generate API tokens

  • Access to Okta API endpoints

  • Required API token permissions for:

    • Users

    • Applications

    • Groups

Setup Procedure

1. Generate Okta API Token

  1. Sign in to your Okta account

  2. Navigate to API > Create Token

  3. Enter a descriptive name in the Name field

  4. Select Create Token

  5. Copy the generated token

2. Configure in Firefly

  1. In Firefly, go to Settings > Integrations

  2. Select Add New > Okta

  3. Enter a descriptive name in the Nickname field

  4. Paste your API token into the API Token field

  5. Enter your Okta account URL in the Base URL field (e.g., dev-12345.okta.com)

  6. Select Next to complete the setup

Configuration Details

  • Automatically fetches Okta assets including:

    • Applications

    • Groups

    • User information

  • Regular scanning of Okta assets

  • Support for policy enforcement on Okta resources

  • Integration with Firefly's governance framework

Best Practices

  1. Use a dedicated API token for Firefly integration

  2. Regularly rotate API tokens for security

  3. Monitor API token usage in Okta

  4. Keep track of which Okta assets are being monitored

  5. Review and update policies as needed

  6. Maintain proper access controls in Okta

Troubleshooting

  1. For API token issues:

    • Verify token permissions

    • Check if the token has expired

    • Ensure the token has the correct scopes

  2. For asset discovery issues:

    • Verify the integration is active in Firefly

    • Check if the API token has access to the required resources

    • Review Firefly integration logs

    • Verify Okta base URL is correct

  3. For policy enforcement issues:

    • Verify the asset types are supported

    • Check policy configuration

    • Review Firefly policy logs

    • Ensure Okta resources are properly tagged

Last updated

Was this helpful?