steampipe plugin install okta

Table: okta_application - Query Okta Applications using SQL

Okta Applications are integral components of the Okta identity management service. These applications represent the software applications that are linked to Okta for single sign-on, provisioning, or API access management. They enable seamless and secure access to all the applications your users need, from Microsoft Office 365 to custom applications built in-house.

Table Usage Guide

The okta_application table provides insights into applications configured within an Okta organization. As a Security Analyst, explore application-specific details through this table, including application type, status, and associated metadata. Utilize it to uncover information about applications, such as those with specific accessibility, the users assigned to each application, and the verification of application settings.

Important Notes

  • This table supports an optional filter column to query results based on Okta supported filters.

Examples

Basic info

Explore which applications are currently active in your system by identifying their status and creation dates. This can help in managing the applications effectively and ensuring timely updates.

select
name,
id,
label,
created,
status,
sign_on_mode
from
okta_application;
select
name,
id,
label,
created,
status,
sign_on_mode
from
okta_application;

List SAML 2.0 apps

Identify applications that use SAML 2.0 as their sign-on mode. This can be useful in understanding the security protocols of your applications.

select
name,
id,
label,
created,
status,
sign_on_mode
from
okta_application
where
sign_on_mode = 'SAML_2_0';
select
name,
id,
label,
created,
status,
sign_on_mode
from
okta_application
where
sign_on_mode = 'SAML_2_0';

List apps assigned to a specific user using a filter

Explore which applications are assigned to a specific user by filtering based on user ID. This is useful for understanding the scope of access and permissions granted to individual users within your system.

select
id,
label,
name,
sign_on_mode,
status
from
okta_application as app
where
filter = 'user.id eq "00u1e5eizrjQKTWMA5d7"';
select
id,
label,
name,
sign_on_mode,
status
from
okta_application as app
where
filter = 'user.id eq "00u1e5eizrjQKTWMA5d7"';

List apps assigned to a specific group using a filter

Explore which applications are assigned to a specific group, useful for understanding application accessibility and managing group permissions. This can aid in maintaining security protocols and ensuring appropriate access rights.

select
id,
label,
name,
sign_on_mode,
status
from
okta_application
where
filter = 'group.id eq "00u1e5eizrjQKTWMA5d7"';
select
id,
label,
name,
sign_on_mode,
status
from
okta_application
where
filter = 'group.id eq "00u1e5eizrjQKTWMA5d7"';

Schema for okta_application

NameTypeOperatorsDescription
_ctxjsonbSteampipe context in JSON form.
accessibilityjsonbAccess settings for app.
createdtimestamp with time zoneTimestamp when user was created.
credentialsjsonbCredentials for the specified signOnMode.
domaintext=, !=, ~~, ~~*, !~~, !~~*The okta domain name.
filtertext=Filter string to [filter](https://developer.okta.com/docs/reference/api/users/#list-users-with-a-filter) users. Input filter query should not be encoded.
idtext=Unique key for app.
labeltextUser-defined display name for app.
last_updatedtimestamp with time zoneTimestamp when app was last updated.
nametext=Unique key for app definition.
settingsjsonbSettings for app.
sign_on_modetextAuthentication mode of app. Can be one of AUTO_LOGIN, BASIC_AUTH, BOOKMARK, BROWSER_PLUGIN, Custom, OPENID_CONNECT, SAML_1_1, SAML_2_0, SECURE_PASSWORD_STORE and WS_FEDERATION.
sp_connection_nametext=, !=, ~~, ~~*, !~~, !~~*Steampipe connection name.
sp_ctxjsonbSteampipe context in JSON form.
statustext=Current status of app. Valid values are ACTIVE or INACTIVE.
titletextThe title of the resource.
visibilityjsonbVisibility settings for app.

Export

This table is available as a standalone Exporter CLI. Steampipe exporters are stand-alone binaries that allow you to extract data using Steampipe plugins without a database.

You can download the tarball for your platform from the Releases page, but it is simplest to install them with the steampipe_export_installer.sh script:

/bin/sh -c "$(curl -fsSL https://steampipe.io/install/export.sh)" -- okta

You can pass the configuration to the command with the --config argument:

steampipe_export_okta --config '<your_config>' okta_application