👋 Ciao! I’m Fabio, a Solutions Engineer specialized in 🔐 Identity & Access Management (IAM). I work between France 🇫🇷 and Italy 🇮🇹 for Okta.
📚 In this space, I share ideas, experiences, and insights about the world of digital identity.
🌍 Although this site is multilingual and some posts are also in Italian and French, most content is in English. To see everything, pick English as your language.
On June 18, 2016, I received my first email from an Okta tenant. Ten years later, after Factor-y, the first projects in Italy, the move to France, and the evolution of the platform, I wanted to pause for a moment and reflect on what it has meant to grow with this technology and with the people who made it special.
Okta Privileged Access 2026.04.0 introduced workload identity for automation. This article explains how Workloads helps CI/CD pipelines, infrastructure automation, cloud workloads, scripts, and AI agents authenticate with native platform identity and runtime OIDC tokens instead of hardcoded API keys or service account secrets.
A critical but not anti-AI reflection on costs, productivity, layoffs and human work in 2026. AI is real and useful, but the promise of replacing a team with a cheap monthly subscription is running into economic, technical and organizational limits.
When using Okta Identity Engine (OIE), the Sign-In Widget shows an authenticator selection screen that requires the user to manually pick Email or SMS before proceeding. If your policy only allows one method, this extra click adds friction with no benefit. Here’s how to skip it entirely with a small JavaScript customization in the Sign-In Widget.
Back from a week in New York, I share how AI is now everywhere: from Times Square billboards to subways, from cafés to the laptops of students and professionals. A journey through advertising, real-world use, and governance risks in the era of AI agents.
EU AI Act, NIST AI RMF, NIS2, DORA: four regulatory frameworks, one identity layer. How Okta’s O4AA blueprint maps to every compliance requirement before the August 2026 deadline.
Protocol-level deep dive into the four Okta for AI Agents access patterns: ID-JAG token structure, sequence diagrams, audit log examples, and step-by-step Okta configuration for XAA, STS, PSK, and Service Account.
A strategic overview of the four access patterns for AI agent integrations — XAA, STS, PSK, Service Account — with a comparison matrix, decision framework, and migration roadmap. Companion deep dive covers protocol details and Okta configuration.
Opaflix is an open-source tool to browse and replay Okta Privileged Access (OPA) SSH and RDP session recordings from AWS S3. Supports single-tenant and multi-tenant deployments, advanced search, infrastructure graph, and OIDC Authentication.
Okta’s Showcase 2026 unveils the Agentic Enterprise Blueprint: a comprehensive framework to discover, govern, and secure AI agents as first-class identities, addressing the emerging shadow AI crisis and regulatory compliance requirements.
