identity in the cloud (Blue Island/

Okta identity service gets FedRAMP approval

On May 11, Okta announced that it had received Federal Risk and Authorization Management Program moderate authorization for its identity, mobility and security services available through Amazon Web Services’ commercial cloud in the US East and US West regions.

While Okta already provides its software-as-a-service products to the Centers for Medicare and Medicaid Services, the Department of the Justice helped Okta get the FedRAMP authority to operate.  DOJ was interested in Okta because it wanted to simplify verification, according to Okta CIO Mark Settle.

With the company's developer and platform products, product teams can layer Okta’s identity services into their applications and portals.  The company’s services  include universal directory, single sign-on, provisioning, adaptive multi-factor authentication and mobility management, according to the FedRAMP website.

“The federal government has the highest security standards, so we see FedRAMP as the next evolution of our company,” Settle told GCN.  “We have already worked to get a lot of other certifications with the government such as HIPAA [Health Insurance Portability and Accountability Act], and we have seen the benefits cascade to our customers, which helps us with our security safeguards.”

Okta is designed to be a “one-stop gateway to the cloud” that features the ability to incorporate legacy applications. 

The identity management platform was a launch partner with the AWS Partner Network Government Competency Program.  Okta leverages many AWS services to operate its SaaS platform, including Amazon EC2 Container Service and AWS Key Management Service.

Settle said several federal agencies are in “prospective-stage” conversations with Okta about using the services.

“We realize that there are various levels of sensitivity when it comes to protecting information, but at the same time customers don’t want to be hassled to get access --so the customer experience is huge for us,” Settle said. 

About the Author

Sara Friedman is a reporter/producer for GCN, covering cloud, cybersecurity and a wide range of other public-sector IT topics.

Before joining GCN, Friedman was a reporter for Gambling Compliance, where she covered state issues related to casinos, lotteries and fantasy sports. She has also written for Communications Daily and Washington Internet Daily on state telecom and cloud computing. Friedman is a graduate of Ithaca College, where she studied journalism, politics and international communications.

Friedman can be contacted at [email protected] or follow her on Twitter @SaraEFriedman.

Click here for previous articles by Friedman.


  • Records management: Look beyond the NARA mandates

    Pandemic tests electronic records management

    Between the rush enable more virtual collaboration, stalled digitization of archived records and managing records that reside in datasets, records management executives are sorting through new challenges.

  • boy learning at home (Travelpixs/

    Tucson’s community wireless bridges the digital divide

    The city built cell sites at government-owned facilities such as fire departments and libraries that were already connected to Tucson’s existing fiber backbone.

Stay Connected