Articles tagged mcp
Okta Developer Connect Recap
Identity has become one of the most important control points in modern systems. As applications grow more distributed and AI-driven automation becomes part of everyday workflows, identity increasingly defines how secure, predictable, and trustworthy those systems are. Decisions about access, scope, and lifecycle now shape not only the user experience, but also how well security holds up as systems scale. With this shift in mind, we hosted our first flagship Okta Developer Connect event in...
Introducing the Okta MCP Server
As AI agents and AI threats proliferate at an unprecedented rate, it becomes imperative to enable them to communicate safely with the backend systems that matter the most. A Model Context Protocol (MCP) server acts as the bridge between an LLM and an external system. It translates natural language intent into structured API calls, enabling agents to perform tasks like provisioning users, managing groups, or pulling reports, all while respecting the system’s security model. Establishing...
Build Secure Agent-to-App Connections with Cross App Access (XAA)
So you want to get your AI agent in front of Okta customers or make your application securely accessible to agents — you’re in the right place. Here’s why it matters. Secure access with enterprise IT oversight between independent applications that communicate with each other is a recognized gap in OAuth 2.0. Enterprises can’t effectively regulate cross-app communication, as OAuth 2.0 consent screens rely on users granting access to their individual accounts. Now, with the...
Integrate Your Enterprise AI Tools with Cross-App Access
SaaS apps not only have to meet the rigorous demands of managing users at an enterprise level but must also be secure and resilient by design. In “An Open Letter to Third-party Suppliers”, Patrick Opet, Chief Information Security Officer of JPMorgan Chase, writes: “Modern integration patterns, however, dismantle these essential boundaries, relying heavily on modern identity protocols (e.g., OAuth) to create direct, often unchecked interactions between third-party services and firms’ sensitive internal resources.” Modern identity...