Open in app

Sign in

Write

Sign in

Okta IAM

ACM.164 Creating Okta administrators with separation of duties to prevent privilege escalation

Teri Radichel
Cloud Security
Published in
12 min readFeb 22, 2023

--

Part of my series on Automating Cybersecurity Metrics. The Code.

Free Content on Jobs in Cybersecurity | Sign up for the Email List

In the last post we took a look at Okta networking.

Okta Networking

ACM.163 How to limit network access and thereby limit possible attacks on our Okta User Directory

medium.com

In this post we want to configure some users in Okta to administer user management and access.

Okta Identity and Access Management (IAM)

Remember one of our strategies to prevent privilege escalation was to separate user creation from user access assignment as described in this post.

Mitigating CreateUser Privilege Escalation and Back Doors

ACM.143 Preventing an attacker from creating a backdoor user in your cloud account

medium.com

Okta has some built-in roles which customers can use. You can take a look at those roles and what each role can do here:

--

--

Teri Radichel
Cloud Security

Written by Teri Radichel

2.5K Followers
Editor for

CEO 2nd Sight Lab | Penetration Testing & Assessments | AWS Hero | Masters of Infosec & Software Engineering | GSE 240 etc | IANS | SANS Difference Makers Award

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams