Complete Docker-compose stack for testing Okta RADIUS Agent with OpenVPN AS, including automated MFA test scripts and configuration examples. The guide covers setup, configuration, client IP reporting, supported factors, and security best practices.
Technical analysis of the innovations introduced by NIST SP 800-63-4: from the end of forced password expiration to the emphasis on phishing-resistant authentication, with practical parallels on Okta products.
Learn how to implement step-up MFA with Okta in Citrix environments. This article explores three practical solutions: Okta group-based policies, dual-StoreFront architecture, and Citrix ADC with nFactor authentication. Discover the best approach for your organization.
Automate AWS EC2 power management and DNS updates using Okta Workflows, AWS Lambda, and CloudWatch. Start and stop VMs from the Okta dashboard, enforce scheduled shutdowns, and dynamically update DNS records. The guide covers setup steps, security considerations, and cost management in AWS demo environments.
Automate Mac OS window resizing with AppleScript to set precise dimensions and position for applications, useful for video recording or screen sharing.
WinAuth, an open-source Windows MFA solution for environments with shared PCs and restrictive requirements. WinAuth provides TOTP authentication with password-protected authenticators, addressing scenarios where traditional MFA methods aren’t viable.
How to integrate GLPI, an open-source IT service management platform, with Okta for SSO. It covers running a GLPI test environment via Docker, LDAP and SAML configuration walkthroughs, and notes on OAuth/OIDC with commercial plugins. The guide highlights user import, authentication options, demo readiness, and security limitations for non-production use.
This guide explains how to send Base64-encoded HTTP headers with Okta Access Gateway (OAG) using nginx configuration extensions. It covers internal-only app setup, usage of OpenResty modules, and examples for encoding user data in headers. Solutions include native nginx directives and Lua scripting, supporting common legacy integration needs for secure internal communication and custom header enrichment.
