Start granting on-demand access to Splunk Add-on for Okta.
The Splunk Add-on for Okta allows a Splunk software administrator to collect data from Okta. The add-on collects event information, user information, group information, and application information using Okta Identity Management REST APIs. This add-on also supports remediation commands that allow you to add a user to an Okta group, remove a user from an Okta group, deactivate an Okta user account from the Splunk platform and create custom alert. After the Splunk platform indexes the events, you can consume the data using the prebuilt panels included with the add-on. This add-on provides the inputs and CIM-compatible knowledge to use with other Splunk apps, such as Splunk Enterprise Security and the Splunk App for PCI Compliance.
You can set up the Splunk Add-on for Okta integration with Indent in a few minutes:
Get a demo of the Indent + Splunk Add-on for Okta integration: schedule now →
We use Indent at Reclaim and have awesome production access workflows (paired with Tailscale). Indent makes being SOC2 compliant not a drag.