Okta Launches Cross App Access Protocol for Secure AI Agent Integration
Okta introduces Cross App Access, an OAuth extension to manage AI agent interactions across enterprise systems, enhancing security and control.
SAN FRANCISCO—Okta, Inc. (NASDAQ: OKTA), a leader in identity management, has announced the launch of Cross App Access, a new protocol designed to secure interactions between AI agents and enterprise applications. This OAuth extension aims to provide IT teams with visibility and control over AI-driven and app-to-app connections, addressing growing security concerns in the AI-powered workplace.
Why It Matters
- Manual Consent Challenges: Current AI tools rely on protocols like Model Context Protocol (MCP) and Agent2Agent (A2A) to connect to enterprise data. However, users must manually log in and consent for each integration, creating inefficiencies and security gaps.
- Unmanaged Perimeter: App-to-app connections often occur without oversight, leaving IT teams with limited visibility and expanding unsecured access points.
- AI Agent Risks: The rise of autonomous AI agents introduces non-deterministic access patterns, crossing system boundaries and interacting with sensitive data—posing challenges for traditional security controls.
How Cross App Access Works
Okta’s new protocol enables enterprises to manage AI agent access centrally. For example:
- An AI tool requests access to an internal communication app (e.g., Slack) via Okta.
- Okta evaluates the request against enterprise policies and issues a token if approved.
- The AI tool presents the token to the app, gaining access without additional user interaction.
This process eliminates repetitive consent screens and provides enterprises with audit trails for compliance.
Benefits for ISVs and Enterprises
- For ISVs: Cross App Access simplifies secure integration development, reducing token sprawl and fragmentation risks. ISVs can offer enterprise-ready AI solutions with standardized access controls.
- For Enterprises: Businesses gain centralized oversight of AI agent permissions, enabling seamless adoption of AI tools while maintaining security and compliance.
Availability and Next Steps
Cross App Access is expected to launch for select Okta Platform customers in Q3 2024. Interested ISVs can apply for early access.
Learn More
"With Cross App Access, Okta is bringing oversight to how agents interact across the enterprise," said Arnab Bose, Chief Product Officer at Okta. "We’re committed to collaborating with the software industry to standardize secure access for AI agents."
For more details, visit Okta’s website.
Related News
AI Agents Pose New Security Challenges for Defenders
Palo Alto Networks' Kevin Kin discusses the growing security risks posed by AI agents and the difficulty in distinguishing their behavior from users.
AI OS Agents Pose Security Risks as Tech Giants Accelerate Development
New research highlights rapid advancements in AI systems that operate computers like humans, raising significant security and privacy concerns across industries.
About the Author
Dr. Lisa Kim
AI Ethics Researcher
Leading expert in AI ethics and responsible AI development with 13 years of research experience. Former member of Microsoft AI Ethics Committee, now provides consulting for multiple international AI governance organizations. Regularly contributes AI ethics articles to top-tier journals like Nature and Science.