The AlienApp for Okta provides deep security monitoring for single sign-on (SSO) and multi-factor authentication (MFA)A method of access control in which a user is granted access only after successfully presenting several separate pieces of evidence to an authentication mechanism – typically at least two of the following categories: knowledge, possession, and inherence. activities, helping you safeguard user credentials through early threat detection and rapid response. It enhances the threat detection capabilities of USM Anywhere by collecting and analyzing log data from your Okta environment to help you detect user credential theft, abuse, policy violations, and other threats to your Okta account.
- The AlienApp for Okta regularly queries the Okta API for information, such as authentication events, user profile updates, user state changes, application and group assignment, and Okta platform changes.
- The out-of-the-box correlation rules for Okta events provided by the AlienApp for Okta enable USM Anywhere to automatically create alarmsAlarms provide notification of an event or sequence of events that require attention or investigation., notifying you about suspicious activity in your Okta environment.
- The AlienApp for Okta includes a predefined dashboard that provides an overview of Okta activity so that you have quick visibility to streamline your investigation and incident response processes.
Warning: If the AlienApp fails and there is a message to inform you that it has not been loaded, please contact the AT&T Cybersecurity Technical Support department to solve the problem.