The Okta Breach
A Okta support system was compromised, and the unauthorized access. We give credit where credit is due; BeyondTrust own tools and Cloudflare for discovery.
While it has been reported that 175 clients (BeyondTrust and Cloudfare) are breached, another was the popular 1Password app company but not any database or such.
We believe in Okta, having been in business for over 17 years of helping business and being an Okta for eight years. We are their longest-serving partner by far. Our engineers see and provide strategic support the most complex companies for deployment.
Do this within your Okta instance, or ask us to help.
What enhancements must be turned on or reviewed if you're a current Okta customer? If you don’t know below, ask us!
- Run a report in Okta for all MFA changes.
- Run all password resets company-wide.
- Enable MFA hardware, like Yubikey or Fido devices.
Being Proactive.
- Specific reports should be turned on. EX: New User created.
- Have old users been reactivated?
- Do the user sessions have the proper authentication with it?
- Any MFA request, changes, removals or overrides.
- Access to sensitive business applications. Run a report on those business applications.
- Does your business have supply change providers accessing your tenants?
- Do you have WorkDay as a master where you provision external workers and partners? Is this set up correctly, and has this been flushed out with a massive reset?
Key Links within Okta to help.
- Tracking Unauthorized Access to Okta’s Support System Link
- Auditing customer support actions in your Okta tenant using System Log Link
- Okta and Splunk Combine to Detect Common Attacks Link
- Exporting Okta Log Data Link
- System Log Queries for Attempted Account Takeover Link
- User Sign-in and Recovery Events in the Okta System Log Link
- Exporting Browser Log Files for Troubleshooting Link
- Defending Against Session Hijacking Link
- Understanding the Risks of Persisting Session Cookies Across Browser Sessions Link
- Guidance for Generating HAR Files Link
- How to Remove Secrets from a .har File Link
- HealthInsight tasks and recommendations Link
- HealthInsight tasks and recommendations Link
What do our engineers do very well with Okta?
We actively work for the protection and authentication of users for corporate applications. We help customers build secure authentication using Okta efficiently and effectively and quickly accelerate any website or application. We can help you on your journey to a more secure Okta instance and work with you on a zero-trust model.
What Size Companies Do We Work With?
Okta for Enterprises (500+ Employees)
Our Enterprise Deployments of Okta are ideal for organizations with complex IT configurations. We provide the right Migration and Deployment packages for enterprises, leveraging deep expertise in identity management, access control, and integrations across various platforms. Our Enterprise Business package is cost-effective, ensuring secure, seamless identity management. We are experts in Okta.
Mid-Size Companies (51-500 Employees)
Growing organizations with complex operational needs and Companies expanding their market reach without the hassel of learning sophisticaed cloud service. Mid-market organizations face unique challenges in managing digital identities, security, and cloud infrastructure. A cloud managed service provider like Iron Cove specializes in Okta support can be a game-changer for businesses looking to optimize their identity management strategy.
Okta for Small Business (1-50 Employees)
Iron Cove Solutions is a trusted provider of Okta SSO identity solutions for small businesses. We offer tailored Deployment and Support packages designed specifically for small businesses. Our “Small Business Package” is affordable and structured to quickly set up your identity and access management within the Okta security cloud. We are experts in Okta deployments. This is great for Startups and local enterprises seeking scalable solutions. We are very cost-effective and agile support for your business needs.
Okta for Non-Profits - Any size
We help non-profit organizations implement Okta. As experienced Okta partners, we develop deployment plans tailored to your budget and specific needs, ensuring access to secure, affordable identity and access management solutions. We guide you through each step of working with Okta.
Okta Cloud Managed Support
Our Okta Cloud Managed Support services are designed to help organizations maintain a secure environment both during and after deployment. Whether you’ve already implemented Okta Cloud Security or are just beginning, we offer support packages that ensure businesses of all sizes have the security support they need.
If you want a secure webpage for on and off-board users to Okta with checks and balances, check out our Orchestration Engine.
The Orchestration Engine makes it easy to provision users with cloud services for your business.