Okta
Table of Contents
Introduction
Okta is an identity solution used as a single sign-on (SSO) for logging into multiple platforms at once. For prerequisites and installation steps see Okta Quick Start Setup Guide.
Policies
Cisco Cloudlock monitors Okta in the following policy:
User Events and Behavior Analytics (UEBA)
- Build Your Own: Event Analysis
Response Actions
In addition to the Global Response Actions available in all platforms, Okta also has one unique Response Action:
Add User to Group
Adds the user who violated the policy to a specified Okta group.
Incident Examples
![okta 1.png 999](https://files.readme.io/a2ef764-okta_1.png)
Event Analysis Policy Incident
Updated 11 months ago