Please share with the community what you think needs improvement with Okta Workforce Identity.
What are its weaknesses? What would you like to see changed in a future version?
* Passwordless authentication. * Integration with the user provisioning infrastructure to track all entitlement changes; simplify the modeling of the role and access definitions at every stage of the user life cycle. * Automation of the entire entitlement and role review process, in alignment with business needs and requirements as stated by business leaders and managers. * Oversight in the form of dashboards reconciling and centralizing information for immediate insight into the status of access reviews and certification processes.
It is a complex solution, and you need a good understanding of how to use it correctly. Otherwise, you can't take full advantage of what it offers and it becomes difficult to use. I don't know if it is possible to make it simpler to use or simpler to understand, but that would be the most important thing to improve. In the next release, I would like to see them add other solutions to their suite of products. I would like to see better integration with other software. The ability to do the provisioning is a great feature and there is some software where they can sign-on but they can't do the provisioning.
The solution lacks an on-premises deployment model so it can't offer a hybrid solution. It would be ideal if clients had options that weren't just cloud-based.
Better multi-factor authentication integration and support, it's around v2.0 and will need a 3.0 release for maturity.
RESTful Web Service calls and their response seem a bit slow.
On the admin side, we can create our own passwords instead of generating one, which is usually difficult to explain to a user. Otherwise, the application is pretty awesome.
UD attribute mapping, Okta group rules, and dynamic usage could use improvement. More in-depth functionality and features to integrate with RADIUS solutions.
Maybe the interface could use some work but, for the most part, the tool is pretty cool.
We still had to write several internal programs/scripts to complete the user-provisioning process. Okta does not have the ability to provision mailbox accounts for on-premise Exchange or in a hybrid O365 environment. The Group Push function from Okta to AD did not work reliably in our environment.
Command line access Reporting