Okta is great for Microsoft technologies

How Okta and Microsoft Work Together

Boosting productivity and security like never before – with Okta’s Secure Identity Integrations,  Microsoft products can scale effortlessly with end-to-end security set up  in seconds.

Okta’s deep capabilities for Microsoft offers: 

Single Sign-On (SSO)

Provide seamless access to Office apps like Outlook, Teams, and SharePoint with one secure login, reducing friction and IT support needs.

Lifecycle Management

Automate user onboarding, provisioning, and license management to ensure accuracy and save time.

Entitlements Management

Assign precise, role-based permissions to maintain compliance and avoid over-permissioning.

Workflows

Use prebuilt, low-code connectors to automate Office 365 admin tasks like group assignments and license provisioning.

Universal Logout

Ensure secure session termination across all Office 365 applications to protect against unauthorized access. 

Identity Security Posture Management (ISPM)

Gain continuous, agentless visibility into your identity posture to uncover hidden risks like partially off-boarded users and SSO bypass to help prioritize remediation against identity based threats.

New out-of-the-box Secure Identity Integrations are being added all the time – visit here for more information. 

Office 365

Deploy with Okta from Months to Minutes

Okta’s integration with Office 365, part of our Secure Identity Integrations, simplifies access management, enhances security, and increases operational efficiency. Organizations can now deploy Office 365 by a fraction of the time - reducing timelines from over six months to minutes - all while improving user experience and cutting operational costs.

Current Challenges

Customers are told to choose either lightweight Pass-Through Authentication and Azure Active Directory Connect (AADC) — with no federated single sign-on or high availability — or Active Directory Federated Services (AD FS), which requires six or more components per Active Directory domain. More complex Office 365 environments are significantly simpler to deploy with Okta.

Key benefits of Okta + Office 365

  • 100% cloud-based identity solution = no physical infrastructure required
  • Automated Office 365 license management
  • Just in time user provisioning, one-click deprovisioning

Learn more about Okta + Office 365

Office 365

20,500 Adobe employees are using Okta for SSO into 300 enterprise apps, including Office 365. The company decided to deploy Microsoft Office 365 to all its employees—moving email, calendaring, and Sharepoint tools to the cloud. After reviewing their options and Okta’s record in the industry, Adobe IT decided to sunset the internal single-sign-on system and deploy Office 365 with Okta authentication.

Read the case study

Active Directory + AD FS

Okta enables access to any app using AD credentials

Organizations using Active Directory typically manage thousands of user identities. An acquisition brings in new systems and domains that need to be consolidated and connected to company resources. Okta makes it very simple to manage complex Active Directory environments to provide access to cloud and on-premises applications.

Current Challenges

Customers using their current Active Directory (AD) as the single source of truth will need to build out a complex federation infrastructure with six or more AD FS servers for every single AD domain that the organization may have, or use Azure AD Connect Pass-through Authentication, which does not offer single sign-on and high availability. Each of these options require opening firewall ports.

Consolidating domains after a merger or acquisition can often take weeks (even months) of effort from multiple IT teams to manage these transitions. During the transition period end users don’t have access to the tools or resources they need, and the company’s security posture is at stake when it is reliant on the security of its weakest link.

Key benefits of Active Directory + Okta

  • Built-in support for multiple trusted and untrusted AD forests enable efficient domain consolidation
  • Real-time synchronization of users managed in AD via Okta AD agent
  • No firewall modifications necessary and no on prem infrastructure needed

Learn more about Okta + Microsoft Active Directory and Active Directory Federation Services

Windows 10

Okta enables easy integration to Windows 10 new features

Customers that have standardized on Windows 10, can still use Okta to manage identity. Okta supports Microsoft’s modern browser, authentication methods, and provides efficient single sign-on and device management for all your Windows 10 ecosystem. Most organizations have to support a multitude of devices both corporate issued and user owned. Okta offers a future-proof, vendor-neutral identity architecture.

Okta also enables Windows 10 desktop single sign-on using Integrated Windows Authentication (IWA). You can find Okta apps for Windows 10 in the Microsoft Store for Business, too.

Key benefits of Windows 10 + Okta

  • Extend Windows Hello facial recognition authentication to more apps and devices
  • Automatic join for Windows 10 devices to Azure Active Directory
  • Extend System Center Configuration Manager (SCCM) and Intune device co-management to Macs, Linux, and various other mobile devices
  • Integrate and extend Windows 10 to more applications and devices

Learn more about Okta + Windows 10

Windows 10

Envision Healthcare protects 8,000 users with Okta Adaptive Multi-factor authentication.

“Healthcare companies looking for two-factor authentication, the ability to manage their identities well, and capabilities to federate with other hospitals—as well as a universal directory—should seriously look at Okta.” — Mark Hagan, Chief Information Officer, Envision Healthcare

Read the case study

Azure Active Directory

Customers using Azure cloud applications like Office 365 are automatically provisioned in Azure Active Directory. However, synchronizing user accounts from on-premises AD to Azure AD often involves significant trade-offs in infrastructure complexity, availability, and security.

Okta’s integration with Azure Active Directory, part of our Secure Identity Integrations, enables organizations to eliminate these challenges. Okta provides an agentless, standards-based integration, enabling seamless lifecycle management of users. This approach simplifies hybrid environments, enhances security, and reduces the need for on-premises infrastructure, ensuring a modern, scalable identity solution. 

Learn more about Azure Active Directory + Okta

Azure Active Directory

“[Okta] is one of the things that I can put in my toolkit to say, ‘Hey, we're gonna move faster because we have this identity component nailed.” — Scott Howitt, CISO, MGM Resorts International

Read the case study

Microsoft On-Premises SharePoint Servers

Customers want to protect their investments in Microsoft SharePoint Server. Okta provides a broad set of functionality to address the user management, single sign-on and federation needs of the on-premises SharePoint servers.

Okta integration improves collaboration between customers and partners, or internal users from multiple divisions. Users in both on-premises and cloud directories can log in through Okta to access a single on-premises SharePoint deployment.

Key benefits of On-Premises SharePoint + Okta

  • Cloud single sign-on to on-premises SharePoint, and any on-premises web applications hosted on SharePoint
  • Enable all users – internal employees, external customers, business partners – to access SharePoint and collaborate on the same platform
  • Expose on-premises business intelligence applications to federated external users

Microsoft On-Premises Sharepoint Servers

Acxiom employees no longer get locked out of applications, and can access their work from wherever they are.

“Okta has also made IT much more efficient. Identity has been virtualized into one platform and we can track it better, making the onboarding and termination processes much easier." — Pablo Valarezo, IAM Program Manager, Acxiom

Read the customer journey

Microsoft Intune Mobile App Management

Okta enables the choice of device management solutions

A number of customers are moving to a device trust model to handle the proliferation of devices per user and the diversity of user owned and corporate owned devices. Some customers still rely on device management solutions like Intune. Okta integrates with MDM providers like Intune, MobileIron, and Airwatch.

Okta’s device trust model requires devices to meet a number of contextual conditions — such as IP address, location, user group, and enrollment in a mobile device management solution — before they can access cloud services. Okta will check if the device is managed. It will approve access for Windows devices that are joined to on-premises AD, and require Mac and iOS devices to be enrolled in Intune or another MDM solution.

Key benefits of Intune + Okta

  • Get the cloud identity and access management benefits like SSO, lifecycle management, and MFA, along with Intune’s mobile device management
  • Okta's device trust can assess a device's security posture, and use Intune app protection 
  • Easy transition to a more simple and secure device trust model
Vidyard video

Microsoft Intune Mobile App Management

With a lean IT team, and a tight timeline to deploy a new mobile security solution, Del Monte Foods turned to Okta Mobility Management to secure mobile devices and streamline the onboarding process for new users.

Read the case study

Dynamics

Okta simplifies access to Dynamics

Microsoft Dynamics is a line of enterprise resource planning (ERP) and customer relationship management (CRM) software applications that run on the Office 365 platform.

Okta’s agentless custom integration with Office 365 enables access to Dynamics applications with no requirements to set up and manage physical infrastructure, or change firewall settings.

Key benefits of Microsoft Dynamics + Okta

  • 100% cloud-based, integrated platform that works at large scale and low cost
  • Automated, preconfigured authentication to Microsoft Dynamics
  • No physical infrastructure or tools required

Learn more about Okta solutions

Post.

Dynamics

Post Holdings infrastructure solutions architect Larry Woods worked with the team at Okta to deploy Office 365 across nearly 4,000 users – a process that would traditionally take about eight months – within six weeks.

Read the blog

Cloud Application Security

Maximize the benefits of Cloud App Security with Okta

Many of our customers use cloud application security broker (CASB) solutions like Microsoft Cloud App Security to protect data on corporate-owned applications, enforce data loss prevention policies, and detect and alert on security incidents.

Combining a CASB with identity and access management delivers unprecedented insight and control into on-premises and cloud environments, and helps security teams combat complex cyber threats.

Okta’s API-driven identity platform enables two-way communication with Cloud App Security to help monitor and secure SaaS applications. Okta collects information on users, their devices, and location to manage access and monitor activity in cloud applications.

Key benefits of Cloud App Security + Okta

  • Use Cloud App Security's built-in connector to Okta to receive data on user logins
  • Extend Okta's syslog capabilities to view reports in the Cloud App Security portal
  • Use Cloud App Security's policy monitoring and response capabilities to gain insight into user access to O365 applications
Vidyard video

Cloud Application Security

Experian delivers data services through new applications and APIs, and chose Okta as the identity layer to power it all.

“Now I have the ability to manage APIs in the same way that I manage devices, users, and applications, and how we give access to those applications.” — Mervyn Lally, EVP of Global Product Development, Experian

Read the case study

Microsoft Azure Information Protection

Azure Information Protection is a content classification solution that enables an administrator or end users to classify, label, and protect documents and emails. Using Okta as the identity provider provides role-based access control to Azure Information Protection and thousands of SaaS apps in the Okta Integration Network.

Since this is a cloud-based service that requires user authentication into Azure Active Directory, Okta will speed up deployment of this service through its rapid provisioning of users into Azure AD. Environments with user identities stored in LDAP and Okta Universal Directory can use Okta to provision user identities from those directories into Azure Active Directory.

Okta’s role and license management capabilities can define an administrator in the Azure AD tenant.  Administrators can create templates and data classification labels in the Azure portal, enforce template policies based on the content of the document or email, and create secure mail flow policies in Office 365. Templates with Azure Information Protection policies can be shared across all users in an Okta-connected Azure Active Directory tenant.

Key benefits of Azure Information Protection + Okta

  • Start with a simple, wizard driven integration to Azure AD via your Okta portal
  • Set up policies in the Azure portal to help protect sensitive information
  • Remove access to any Microsoft Online resource using Okta's automated deprovisioning capability
Vidyard video

Microsoft Azure Information Protection

Flex relies on Okta to provide a unified identity platform to secure the supply chain and manage employee access to applications.

“Okta plays a role in all three of my initiatives: Cyber security, business productivity, and best of breed. It fits all three, so it’s a perfect match.” — Gus Shahin, CIO, Flex

Read the case study

Resources

Solution Brief

Reduce Identity and Access Management Friction with Okta’s Integration for Microsoft Office 365