Rapid7 InsightAppSec supported features

This table lists the features and functionality that are available with a Rapid7 InsightAppSec integration.

Feature Description
Push new users

Users created in Okta are sent an email invite to activate their Rapid7 InsightAppSec account.

Here are some important things to note:

  • The following attributes are required to create a user: Email, First Name, and Last Name.
  • You can map an optional entitlement to determine user access types, such as a Platform Administrator or a standard user. The platform_admin and timezone parameters are optional and default to false and UTC respectively. Custom time zones aren't supported, therefore the value always defaults to UTC.
Push profile updates Updates to the Okta user profile are pushed to Rapid7 InsightAppSec.

Profile updates are limited to the First Name and Last Name attributes. The user's email and username attributes can't be modified after creation.
Push user deactivation Users deactivated in Okta are deleted in Rapid7 InsightAppSec.

This workflow completely removes the user entity, invalidates all API keys they own, and instantly revokes their active sessions across all grouped products.
Import new users You can import users created in Rapid7 InsightAppSec into Okta.

This backwards-import process can be executed during scheduled or manual sync intervals.
Entitlement Management You can manage app entitlements for Rapid7 InsightAppSec in Okta.

If the app supports Okta Identity Governance, then you need to enable it to manage entitlements.

Entitlement management is limited strictly to the platform admin designation (assigned as a binary yes or no value). Granular, product-specific role access isn't supported.
Push groups You can push groups and their recursive membership to integrated apps as managed user groups. See Manage Group Push.

Related topics

Integrate Rapid7 InsightAppSec with Okta