Configure the issue responder role

The issue responder role allows users to investigate and fix security issues within their assigned sources. It's designed for source owners and admins (for example, a Salesforce admin) who need to remediate vulnerabilities in their systems without accessing other sources.

The issue responder role grants read and write access to issues within their assigned sources:

  • View issues
  • Dismiss issues
  • Use event hooks or Okta Workflows to remediate issues

Assigning the issue responder role to a group provides group members with controlled access to remediate issues in the ISPM console while maintaining your org's security governance.

Before you begin

  • Ensure that ISPM is integrated with Okta for your org.
  • You must have the super admin role mapped to a group in ISPM to configure the issue responder role.
  • You must be a super admin or org admin in Okta to create groups.
  • The group that you're assigning the issue responder role must be assigned to the ISPM SSO app.

Assign the issue responder role to a group in ISPM

  1. In the ISPM console, go to Settings > Role assignment.

  2. Click Assign group roles.

  3. Enter a group name.

  4. From the Roles dropdown menu, select Issue responder.

  5. Select one or more sources from the Visible sources dropdown menu that users can view and dismiss issues for.

  6. Click Assign role. If users are a member of a group with super admin roles and a group with other roles, they get the super admin role.

Create a group in Okta

  1. In the Okta Admin Console, go to Directory > Groups.
  2. Click Add Group.
  3. In the Name field, enter the same group name that you used for mapping the role. If these group names don't match, users can't access the ISPM console.
  4. Optional. Enter a description for the group in the Description field.
  5. Click Save.

Assign the group to the Okta ISPM - SSO OIDC app

  1. In the Okta Admin Console, go to Applications > Applications.
  2. In the Search field, enter Okta ISPM - SSO OIDC.
  3. Click the app name and select the Assignments tab.
  4. Click Assign, and then select Assign to Groups.
  5. Locate the group that you created and click Assign.
  6. Complete the fields in the Assign Okta ISPM - SSO OIDC to Groups dialog if it appears.
  7. Click Save and go back.
  8. Click Done.

Related topics

Configure super admin