Please share with the community what you think needs improvement with Okta Workforce Identity.
What are its weaknesses? What would you like to see changed in a future version?
The solution needs to improve its own marketing. It's a great solution, however, most people don't know what it does. It should be first in line for onboarding employees. The solution should continue to work to improve its interface and make it more user-friendly. The initial setup can be complex at first.
There are some issues with the interface that can be improved.
The guest user access could be improved. How do we authenticate people that aren't in our Active Directory? In the next release, I would like to see passwordless access.
API Securities Solution
The integration with third-party tools needs to be improved. Mainly, the open-source APIs for Splunk would be helpful, as that is where they aggregate most of the data. If this process can be streamlined then it will definitely help.
They also have single sign-on (SSO). When we bought Okta Workforce Identity a year and a half ago, I was also looking at SSO, but not much documentation was available for SSO. The documentation for SSO should be a little more robust for somebody who is implementing it for the first time.
With the device applications, when you are checking the logs, you can't hide the device and that's a feature that's missing. I'd like to see MDM source added.
It would be pricing, which is a tough one because it goes against Microsoft. A lot of companies say they're a Microsoft partner, and they get all their software for free. Okta is like a luxury product, and it's not the most affordable one. I would say if they could work on pricing, it would help. Other than that, they've done great strides in developing a product that is really good. The companies that do see the value tend to invest in it.
* Passwordless authentication. * Integration with the user provisioning infrastructure to track all entitlement changes; simplify the modeling of the role and access definitions at every stage of the user life cycle. * Automation of the entire entitlement and role review process, in alignment with business needs and requirements as stated by business leaders and managers. * Oversight in the form of dashboards reconciling and centralizing information for immediate insight into the status of access reviews and certification processes.
It is a complex solution, and you need a good understanding of how to use it correctly. Otherwise, you can't take full advantage of what it offers and it becomes difficult to use. I don't know if it is possible to make it simpler to use or simpler to understand, but that would be the most important thing to improve. In the next release, I would like to see them add other solutions to their suite of products. I would like to see better integration with other software. The ability to do the provisioning is a great feature and there is some software where they can sign-on but they can't do the provisioning.
The solution lacks an on-premises deployment model so it can't offer a hybrid solution. It would be ideal if clients had options that weren't just cloud-based.
Better multi-factor authentication integration and support, it's around v2.0 and will need a 3.0 release for maturity.
On the admin side, we can create our own passwords instead of generating one, which is usually difficult to explain to a user. Otherwise, the application is pretty awesome.
RESTful Web Service calls and their response seem a bit slow.
We still had to write several internal programs/scripts to complete the user-provisioning process. Okta does not have the ability to provision mailbox accounts for on-premise Exchange or in a hybrid O365 environment. The Group Push function from Okta to AD did not work reliably in our environment.
Maybe the interface could use some work but, for the most part, the tool is pretty cool.
UD attribute mapping, Okta group rules, and dynamic usage could use improvement. More in-depth functionality and features to integrate with RADIUS solutions.
Command line access Reporting
What do you like most about Okta Workforce Identity?
Thanks for sharing your thoughts with the community!