Okta Privileged Access user guide
If you're an Okta Privileged Access user, your access to privileged resources is based on the groups you belong to and the access granted to the group.
Before you begin
To get started with Okta Privileged Access, you must complete a few tasks. See Get started with Okta Privileged Access.
Access resources
You can view the list of resources you've been granted access on your dashboard and connect to the resources through SSH or RDP using your Okta identity.
A Connect button is available on the dashboard for each server, allowing you to connect easily. Access to some servers may require Access Requests approval.
- Sign in to your Okta Privileged Access account.
- Go to My Privileged Access.
-
On the server that you want to connect, click the Actions menu.
- Click Connect on the server you want to access.
- On the dialog that appears, select an account.
- Click Connect. A terminal window or sft UI opens, where you can choose an account to use or be notified of any request approvals.
- If a server account requires an approval to access, do the following:
- Select an account that you want to use.
- Click Request approval. Okta Privileged Access automatically generates an Access Request for you. When your request is approved, you can try to connect again.
Create and manage secrets
When an Okta Privileged Access user is granted access to a secret folder, their level of access may vary based on the assigned permissions. Depending on the permissions, they can perform different tasks within the folder through the user interface or the CLI, such as creating, reading, updating, or deleting secrets and folders.
If the Access Requests condition is enabled in the policy, the users are required to request approval before performing any task. This means that they need to obtain approval before performing specific actions within the secret folder, such as creating a folder or a secret.
The following topics discuss how to create and manages secrets on the user interface. To use CLI commands, see Use the Okta Privileged Access client.
Create a nested folder
- In the Okta Privileged Access dashboard, go to .
- Open a top-level folder.
- Click .
- Give the folder a name and write the description.
- Click Submit.
Create a secret
- In the Okta Privileged Access dashboard, go to .
- Open a top-level folder.
- Click .
- On the Secret name page, enter the following:
Field Task Name Give the secret a name. The name can only contain alphanumeric characters (a-Z, 0–9), hyphens (-), underscores (_), and periods (.)
Description Write a description. Key name Write a key name. Secret value Enter the secret value. Secret keys in the key-value pairs must be case-sensitive.
- Optional. To add another key-value pair, click Add key value.
- Click Save secret.
Reveal a secret
Okta Privileged Access users can reveal secrets to view key names and secret values.
- In the Okta Privileged Access dashboard, go to .
-
Open a top-level folder.
-
Select a nested secret folder.
-
Click Reveal value.
Delete a secret folder
- In the Okta Privileged Access dashboard, go to .
-
Open a top-level folder.
-
Select a nested secret folder.
-
Click the Actions, and then select Delete.
-
Click Delete secret folder.
Delete a secret
-
In the Okta Privileged Access dashboard, go to .
-
Open a top-level folder.
-
Select a nested secret folder.
-
Click the Actions, and then select Delete.
-
Click Delete secret.
Related topics
Install the Okta Privileged Access client