Okta

Secure Okta identity and access management via Model Context Protocol (MCP). Access Okta users, groups, applications, logs, and policies through AI assistants with enterprise-grade security.

2.1K

20 Tools

Packaged by

Requires Configuration

Requires Secrets

Add to Docker Desktop

Version 4.43 or later needs to be installed to add the server automatically

Overview Tools (20)Config

Docker Hub⁠Github repository⁠

Tools

Name Description

analyze_user_app_access Comprehensive access analysis for users and applications. SPECIAL TOOL: Collects ALL access-related data including user details, assignments, application info, policy rules, MFA factors, and network zones. Returns comprehensive raw data for LLM analysis without making access decisions. The LLM MUST analyze the returned data and provide clear access determination with specific reasoning based on user status, application assignments, and policy rule evaluation. Parameters: - app_identifier: Application name, label, or Okta ID (REQUIRED) - user_identifier: User email, login, or ID (optional if group provided) - group_identifier: Group name or ID (optional if user provided) Note: Either user_identifier OR group_identifier must be provided. Returns comprehensive analysis data including: • User details (if user specified): status, profile, MFA factors • Group details (if group specified): name, description, type • Application details: status, sign-on mode, access policy • Assignment status: direct or group-based assignments • Policy rules: access conditions, network zones, MFA requirements with detailed zone/user/group info • Network zones: IP ranges, gateway details for policy evaluation The tool collects raw data only - access decisions must be made by analyzing: 1. User/Group must be ACTIVE 2. User/Group must be assigned to application (directly or via group) 3. All policy rules must be satisfied (network zones, MFA, etc.) Examples: • analyze_user_app_access(app_identifier="Salesforce", user_identifier="[email protected]") • analyze_user_app_access(app_identifier="Office 365", group_identifier="Sales Team") • analyze_user_app_access(app_identifier="0oa1bc2def3ghi4jk5l6", user_identifier="00u1abc2def3ghi4jk5")

Name	Description
`analyze_user_app_access`	Comprehensive access analysis for users and applications. SPECIAL TOOL: Collects ALL access-related data including user details, assignments, application info, policy rules, MFA factors, and network zones. Returns comprehensive raw data for LLM analysis without making access decisions. The LLM MUST analyze the returned data and provide clear access determination with specific reasoning based on user status, application assignments, and policy rule evaluation. Parameters: - app_identifier: Application name, label, or Okta ID (REQUIRED) - user_identifier: User email, login, or ID (optional if group provided) - group_identifier: Group name or ID (optional if user provided) Note: Either user_identifier OR group_identifier must be provided. Returns comprehensive analysis data including: • User details (if user specified): status, profile, MFA factors • Group details (if group specified): name, description, type • Application details: status, sign-on mode, access policy • Assignment status: direct or group-based assignments • Policy rules: access conditions, network zones, MFA requirements with detailed zone/user/group info • Network zones: IP ranges, gateway details for policy evaluation The tool collects raw data only - access decisions must be made by analyzing: 1. User/Group must be ACTIVE 2. User/Group must be assigned to application (directly or via group) 3. All policy rules must be satisfied (network zones, MFA, etc.) Examples: • analyze_user_app_access(app_identifier="Salesforce", user_identifier="[email protected]") • analyze_user_app_access(app_identifier="Office 365", group_identifier="Sales Team") • analyze_user_app_access(app_identifier="0oa1bc2def3ghi4jk5l6", user_identifier="00u1abc2def3ghi4jk5")

Okta

Related servers

Audioscrape

Cloudflare AI Gateway

Cloudflare AutoRAG

Dappier Remote