On July 19, 2022, a security consultancy released a blog post with claims related to the security of specific features of the Okta service. Prior to the release of their blog post, the security researcher reached out to Okta, sharing the technical details of their findings. After a thorough review, our internal product and security teams affirmed that the areas of concern highlighted are not vulnerabilities. We highlight below a number of security best practice recommendations. Our goal is to support our customers on their terms, working with their requirements and integrations to help ensure they can connect to whatever technologies they need. We support a wide range of configuration options as we have a large number of customers with unique challenges that they need to solve. Some of these configuration options are less secure, such as enabling HTTP instead of HTTPS. We also provide synchronization capabilities that include the.