Free Privileged Account Discovery Tool: Identify & secure credentials to stop lateral movement. Download Free

BeyondTrust
  • Products
    Privileged Password Management
    Discover, manage, audit, and monitor privileged accounts
    Password Safe DevOps Secrets Safe
    Endpoint Privilege Management
    Manage privileges on Windows, Mac, Linux, and Unix endpoints
    Windows and Mac Unix and Linux Active Directory Bridge
    Secure Remote Access
    Centrally manage and secure remote access for service desks and vendors
    Remote Support Privileged Remote Access
    BeyondInsight Analytics
    See All Solutions
  • Resources

    Universal Privilege Management

    Our innovative Universal Privilege Management approach secures every user, asset, and session across your entire enterprise.

    Watch Video

    Learn

    Case Studies
    Competitor Comparisons
    Datasheets
    Glossary
    Product Demos
    Whitepapers

    Attend

    Events
    Go Beyond
    Training
    Webinars

    Support

    Changelog
    Professional Services
    Technical Documentation
  • Blog
  • Partners
  • Contact
  • Support
  • Services
  • Training
  • Events
  • Company

Addressing Key MFA/PAM Integration Use Cases with Okta & BeyondTrust

March 26, 2020

  • Blog
  • Archive

Corporate data is living in more places and in more diverse environments, and users are increasingly connecting from remote or unknown locations. As organizations are pushed to solve the ongoing challenge of keeping users connected and productive, they accept an element of risk with every new application, hardware, and remote access request. Protecting the enterprise’s high-value assets against attack and exploitation is critical.

To help reduce the risk of cyberattacks, including credential theft, keyloggers, and brute-force attacks, BeyondTrust and Okta have integrated their solutions to allow out-of-the-box connection of multi-factor authentication (MFA) with single sign on (SSO) and Privilege Access Management (PAM).

Okta Adaptive MFA integrates seamlessly with BeyondTrust via either the SAML or RADIUS protocols.

How Okta MFA integrates with BeyondTrust via Password Safe via SAML and Radius

This integration provides a secure, frictionless user experience, while enabling organizations to improve access controls and visibility by:

  • App-based access for users to access BeyondTrust PAM solutions
  • Verifying the identity of those users accessing privileged accounts
  • Provide an audit trail of secure access requests


Key MFA/PAM Integration Use Cases

1. Step-up authentication via Okta when accessing privileged accounts

When users establish a privileged session to a server or network device, they can leverage their existing desktop or session management tool and an authorization push can be sent to their device of choice.

This level of integration ensures that users requesting access to privileged accounts and systems are properly authenticated.


Step-up authentication

2. Federated Access for Privileged Accounts

This integration can facilitate secure access to protected web applications and consoles, including Azure and AWS, without exposing credentials to the user and without ever leaving them in memory of the computer where they can be scraped. Additionally, Okta administrators can provision new accounts into the BeyondTrust solution through Okta Desktop when integrated with SSO & Active Directory. This eliminates a step in the process and streamlines the account creation.

SSO to BeyondTrust PAM Solutions from Okta Dashboard

Using the Okta dashboard, customers can quickly add and configure SAML integration to BeyondTrust PAM solutions, allowing users simple access to their privileged accounts without being asked to reauthenticate to a different system. The secondary authentication process supports multiple second factors – from SMS, voice and email, to one-time passwords. This secondary authentication process ensures the user accessing the PAM system is authorized and correctly identified.

SSO to BeyondTrust solutions via Okta dashboard

These are just a couple high-level use cases and benefits of integrating BeyondTrust and Okta solutions. You can learn more about BeyondTrust/Okta integrations here: www.beyondtrust.com/okta.

Photograph of Kevin Alexandra

Kevin Alexandra, Director, Technology Alliances

Kevin has over 15 years experience implementing IT security services and solutions across some of the world’s largest and most complex enterprise environments. As a BeyondTrust veteran, Kev has been involved in hundreds of deployments, projects with millions of endpoints, and a plethora of different use cases. He brings this relevant perspective to the Technical Alliances Program to ensure our technology integrations continue to bring value to our customers.

Stay Up To Date

Get the latest news, ideas, and tactics from BeyondTrust. You may unsubscribe at any time.

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

You May Also Be Interested In:

Webcasts

Rising CISOs: Ransomware, Cyber Extortion, Cloud Compromise, oh my!

Whitepapers

A Zero Trust Approach to Windows & Mac Endpoint Security

Whitepapers

Mapping BeyondTrust Solutions to the Qatar National Information Assurance Policy v2.0

BeyondTrust Logo
  • Facebook
  • Twitter
  • LinkedIn

Keep up with BeyondTrust

I agree to receive product related communications from BeyondTrust as detailed in the Privacy Policy, and I may manage my preferences or withdraw my consent at any time.

Customer Support
Contact Sales

Products

  • Endpoint Privilege Management
  • Password Management
  • Privileged Remote Access
  • DevOps Secrets Safe
  • Remote Support

Resources

  • Blog
  • Case Studies
  • Competitor Comparisons
  • Datasheets
  • Glossary
  • Videos
  • Webcasts
  • Whitepapers

About

  • Company
  • Careers
  • Contact
  • Events
  • Leadership Team
  • Partner Program
  • Press

Languages

  • English
  • German
  • French
  • Spanish
  • Korean
  • Portuguese
  • Japanese
  • Privacy
  • Security
  • Manage Cookies
  • WEEE Compliance

Copyright © 1999 — 2020 BeyondTrust Corporation. All rights reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust Corporation is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.