Honestly, it sounds a lot like your IT team just royally messed up the implementation. I’ve used Okta before and it was fine, just like any other SSO. Obviously the hack is a problem and worth keeping in mind when making a choice, but the bulk of the other issues sound like it’s your IT teams fault
This was my first thought as well. We implemented it last year and while it was chaos at first, now people barely notice its there. For a user its little more than a redirect page that automatically logs you in. I'm not sure why that would be safer but I'll take it.
No amount of money/services would help those people that are tech illiterate. I am a bit annoyed that because 1 person does not know how to use the web, 99 people must change their way of work.
I mean, who would pay those prices if not people who don't know what they're doing? 😅 If software costs that much, all scam alarms should normally go off. Not even well known and proven professional software costs that much. (not even autodesk stuff costs that much)
Its $5 per user per month, so it's $5 x 100 users x 12 months. So it's $6000 BEFORE they start adding on any extra services they need, meaning that's probably a low estimate.
We're using Okta products all over the place, not gonna say where. I have to login in 3 TIMES, my laptop login, immediately to okta login in macos, then login to okta AGAIN, IN THE BROWSER for VPN access, cuz everything is tied to okta ... Logging into my work machine is so slow 🐌
As I said in the video, this is a misconfiguration from your admin. There is apparently some switch in Okta to waive the passwords or authentication for certain devices. The primary reason I made this video is Okta is not forthright about the security of the customers and the ridiculous price to small/medium-sized businesses is a waste of money when Microsoft and Google are sufficient for those usecases and now introduce passkeys.
Log into my Microsoft account? Don't have that, so will have to log into my Linux account. Except - you don't need an account with Linux - you just use it (and own your computer rather than renting it).
Microsoft Auth with extensive authentication policies costs money too but it's included in the better license packages. It does offer a ton of controls, I am very with it as a sysadmin.
As someone who's working in this field, man, your IT department was very incompetent 😅 everything was configured in a way that made the IT team's life easier but the end users' very hard. Okta can be configured so seamlessly than users don't even think too much about what programs they're using. Okta is ranked #2 in IAM, this is not an unknown company. The issue is that it's pretty complex and the IT team needs to actually put some effort in learning the system and it looks like they're very lazy in your company 😅
![Seungmin "그렇게, 천천히, 우리(As we are)" | [Stray Kids : SKZ-PLAYER]](http://i.ytimg.com/vi/kAzmhLHePqU/mqdefault.jpg)
![I.N "HALLUCINATION" | [Stray Kids : SKZ-PLAYER]](http://i.ytimg.com/vi/n5B5q1Hwt_U/mqdefault.jpg)
Honestly, it sounds a lot like your IT team just royally messed up the implementation. I’ve used Okta before and it was fine, just like any other SSO. Obviously the hack is a problem and worth keeping in mind when making a choice, but the bulk of the other issues sound like it’s your IT teams fault
This was my first thought as well. We implemented it last year and while it was chaos at first, now people barely notice its there. For a user its little more than a redirect page that automatically logs you in. I'm not sure why that would be safer but I'll take it.
No amount of money/services would help those people that are tech illiterate. I am a bit annoyed that because 1 person does not know how to use the web, 99 people must change their way of work.
imagine paying $6k for something that could've been free *and better*
I mean, who would pay those prices if not people who don't know what they're doing? 😅
If software costs that much, all scam alarms should normally go off. Not even well known and proven professional software costs that much. (not even autodesk stuff costs that much)
Its $5 per user per month, so it's $5 x 100 users x 12 months. So it's $6000 BEFORE they start adding on any extra services they need, meaning that's probably a low estimate.
We're using Okta products all over the place, not gonna say where. I have to login in 3 TIMES, my laptop login, immediately to okta login in macos, then login to okta AGAIN, IN THE BROWSER for VPN access, cuz everything is tied to okta ...
Logging into my work machine is so slow 🐌
As I said in the video, this is a misconfiguration from your admin. There is apparently some switch in Okta to waive the passwords or authentication for certain devices. The primary reason I made this video is Okta is not forthright about the security of the customers and the ridiculous price to small/medium-sized businesses is a waste of money when Microsoft and Google are sufficient for those usecases and now introduce passkeys.
Log into my Microsoft account? Don't have that, so will have to log into my Linux account. Except - you don't need an account with Linux - you just use it (and own your computer rather than renting it).
7:50 okay that one made me laugh 😂 but it's actual good advice for once
Microsoft Auth with extensive authentication policies costs money too but it's included in the better license packages.
It does offer a ton of controls, I am very with it as a sysadmin.
As someone who's working in this field, man, your IT department was very incompetent 😅 everything was configured in a way that made the IT team's life easier but the end users' very hard. Okta can be configured so seamlessly than users don't even think too much about what programs they're using. Okta is ranked #2 in IAM, this is not an unknown company. The issue is that it's pretty complex and the IT team needs to actually put some effort in learning the system and it looks like they're very lazy in your company 😅
I have to install its stupid SSO app because of my company. I lol'd when I joined this company
What? I will always be your friend. I am your friend till the end.
Yours
Chucky
SSO is a single point of failure
No, it's just a different method than passwords. Passwords are just outdated and weaker than more other forms of SSO.
auth0 FTW
If you joined DistroHacking more often we could be friends.