Okta for One Application
Most enterprises rely on Microsoft Active Directory (AD) to control access to their on-premises applications. But cloud applications create a unique challenge in that they typically have their own user directories, and, because they are hosted outside the firewall, are not easy to integrate with Active Directory. This lack of integration means that:
- IT must resort to manual processes, which are inefficient and error-prone, to create and manage user accounts and ensure that accounts are disabled when an employee is terminated.
- Users must remember a new username, password, and URL that has no relationship to the Windows network username and password that they have to type in every day.
To integrate a cloud application with Active Directory, IT organizations have to build their own software solution that controls all access to that cloud application. To operate and maintain this solution as a highly available service, organizations must invest significant time and resources.
Okta Cloud Connect is a purpose-built solution targeted at seamlessly integrating a single, critical application with Active Directory. This provides a seamless single sign-on (SSO) experience for both PC and Mac users, as well as automated user management that is tightly integrated with your Active Directory and your Windows domain.
Robust Single Sign-On with AD
With Okta’s Desktop SSO capability available across Okta’s entire product line, including Okta Cloud Connect, both Mac and PC users can simply log in to their corporate network once to access any cloud application with a single click. No additional URLs, usernames, or passwords are required.
Okta’s Active Directory agent installs on any Windows Server that has access to a Domain Controller without any additional network or firewall configuration. You can install multiple Active Directory Agents to ensure the integration is robust and highly available across geographic locations.
AD-Driven Provisioning and Deprovisioning
Application accounts can be automatically provisioned based on AD users and security group membership. Okta performs ongoing synchronization between AD and your application to ensure that access privileges are always up to date. When a user is disabled in AD, Okta automatically deactivates their access by disabling login through Okta and setting application account status to “inactive” to ensure proper account deactivation. Okta also offers an end-to-end deprovisioning workflow to help administrators finalize any manual account deactivation if your application doesn’t support programmatic access for managing users.
Access and Usage Reporting
Okta Cloud Connect supports all the key reports from the standard offering, capturing details on user activation, user activity, user access, application usage, user provisioning, and deprovisioning. This helps ensure compliance and monitor application usage and ROI for your critical application.
Common Platform, Seamless Upgrade
All of Okta’s products are built on the same secure, scalable, and reliable on-demand Cloud Services Platform. That means from the initial deployment of the first cloud application to the realization of a Cloud First IT Services strategy, customers can start small with Okta Cloud Connect and grow into Okta’s more full-featured offerings—with no upgrades, migrations, or cutovers required. Okta makes the transition to the cloud seamless and secure.
Okta: One for All and All for One
Okta is a simple and flexible solution that enables you to securely manage all your web applications regardless of the authentication and user management methods they support or whether they run inside or outside the corporate firewall. Okta requires no up-front investments in hardware, software, or development time. A consumer-like experience for users and simple but robust directory and application integrations for administrators enable Okta to deliver SSO, user management, and analytics for all your organization’s web applications in minutes rather than months. With Okta—whether you need a solution for a single application or all your web applications—your cloud is covered.