What's new from Oktane 2025?

What's new from Oktane 2025?

As a long-time Okta partner, Cloudworks was on the ground at the biggest Okta event of the year. Oktane once again took place in the bright lights of Las Vegas, and the message was crystal clear: Okta secures AI, and identity is the control plane for both people and non-human agents.

Las Vegas was its usual mix of neon and jet lag, but the signal from Oktane cut through the noise. To get AI right, you need to get identity right. That line set the tone for the three days and for the hallway conversations our team had with customers, product managers, and fellow partners.

If you did not attend, or just want a quick refresher, below is a short recap of what is new from Okta

A proud moment for Cloudworks

During Oktane 2025’s Partner Summit, we were named EMEA Delivery Partner of the Year. It means a lot to us and speaks to Cloudworks' teamwork, our collaboration with Okta, and the trust our Nordic customers place in us.

AlexanderF__updated_whitebackgroundAs Alexander Friedensburg, CEO of Cloudworks, highlights: 

We’re truly grateful for this recognition. Being named EMEA Delivery Partner of the Year is a clear nod to Cloudworks’ focus on identity excellence and real-world outcomes. It reflects our commitment to deliver strong IAM solutions, solid advice, and trusted support to organizations across the Nordics.

On why we partner with Okta, Alexander Friedensburg continues: 

Okta’s cloud-native platform fits our mission to bring secure, modern identity to organizations in the Nordics. When we pair Okta’s pace of innovation with Cloudworks consulting, Managed Services, and complementary offerings, customers get solutions that strengthen security, improve user experience, and support digital transformation. For us, this partnership represents trust, innovation, and shared success.

Henri Talvitie from Cloudworks with X from Okta

Henri Talvitie, Country Manager for Cloudworks Finland, accepted the award on Cloudworks' behalf from Jon Addison, Chief Revenue Officer at Okta. 

The big picture: Identity Security Fabric

Across keynotes, hands-on labs and breakouts, Okta sketched a clear architecture. Identity should be the single place where you decide who or what gets access, for how long, and under what conditions. That now includes AI agents.

Okta for AI Agents

AI agents now become first-class identities. You can discover them, attach each to a human owner, grant narrowly scoped access, and review their activity on a schedule. It sounds simple, yet it addresses the messy reality we see in projects: temporary tokens that never expire, scripts that outlive their owners, and integrations no one remembers setting up.

Cross App Access (XAA)

Think of it as OAuth built for today’s enterprise traffic, where apps and agents talk to other apps constantly. XAA brings those connections under policy. Tokens get shorter lifetimes. Approvals can be added when needed. Most importantly, IT gets a clear view of who or what connected to what, when, and why. Early Access starts January 2026.

Together, these moves aim to reduce hidden connections, eliminate long-lived tokens, and make “human-in-the-loop” approvals practical for agent workflows—without adding friction for end users.

Highlights across the Okta Platform

Here are the some of the most important updates:

Okta Workforce Identity:

Okta introduced a set of updates that better protect hybrid and on-premises environments. By extending governance, threat protection, migration, and access controls to legacy systems, Okta continues to be a trusted identity security fabric provider.

  • Okta Private Cloud Early Access available now.
    A single-tenant, dedicated Okta instance built for stricter data isolation and guaranteed performance. Provides reserved capacity for write-heavy operations and supports regional data storage for primary and disaster-recovery deployments.

  • Global expansion and language supportQ1 2026.
    Okta notes a planned platform cells in Canada and India and French admin and help localization, which is useful for data residency, performance, and language coverage.

Okta Customer Identity:

  • Passkeys Early Access available now
    A replacement for passwords that gives end users a phishing-resistant, user-friendly, and always available authentication experience that reduces security risks and streamlines login. 

  • Okta Identity Governance for Okta Customer Identity General availability in October 2025.
    Automates access policies and reviews to reduce privilege sprawl for external users. Includes Advanced Directory Management for secure delegated administration, so partners can manage their own users and access rights within defined guardrails.

  • Identity Threat ProtectionEarly Access in February 2026
    Identity-layer defenses for bot attacks, new-account fraud, credential stuffing, and risky IPs that act before requests hit your apps. Already available for Workforce customers; these capabilities are now extending to Okta Customer Identity as well.

Highlights across the Auth0 Platform

Here are the some of the most important updates:

Tenant Access Control Lists — General availability now.
Allow, block, or redirect traffic early based on IP ranges, ASNs, JA3/JA4, user agent, or geography. Protects rate limits and cuts noise before requests hit your app.

Auth0 for AI Agents — General availability in October 2025.
Async authorization lets an agent pause and request human approval mid-task. Adds fine-grained guardrails for RAG so agents only read approved content. Works with XAA as it rolls out.

B2B self-service and lifecycle — rolling updates.
Inbound SCIM group sync, Google Workspace directory provisioning, self-service SSO templates, Org domain verification, and a My Organizations API for delegated tasks, plus Universal Logout to cleanly complete offboarding.

Okta Privileged Access

Okta’s agreement to acquire Axiom Security drew a crowd. The plan is to fold Axiom’s identity-centric Privileged Access Management (PAM) into Okta Privileged Access. The direction is toward just-in-time access for more targets like databases and Kubernetes, with approvals and policies in one place. If you already use Okta for workforce access, this brings privileged sessions under the same roof and reduces standing privileges, which auditors and operators both appreciate.Illustrasjon Privileged Access Management (PAM)

What are the key takeaways from Oktane 2025?

1. Make AI agents first-class identities

Give each agent an owner, define minimum permissions, rotate credentials, and review usage on a schedule.

2. Smooth sign-in and safer external access

Use passkeys where they move conversion or support, and give partners delegated admin inside clear guardrails while you keep policy and reviews central.

3. Shift privileged access to just-in-time

Replace standing privileges with short, approved sessions under Okta oversight.

For the full list of updates and timelines, read more here

More articles

Does your organization have documentation of use of privileged accounts?

Does your organization have documentation of use of privileged accounts?

What exactly is Privileged Access Management (PAM)?

What exactly is Privileged Access Management (PAM)?

Cloudworks celebrates 10 years as Nordic IAM specialist

Cloudworks celebrates 10 years as Nordic IAM specialist

Cloudworks expands IAM services to Finland with Henri Talvitie at the helm

Cloudworks expands IAM services to Finland with Henri Talvitie at the helm

How to protect your organization from identity-based attacks

How to protect your organization from identity-based attacks

Watch out for these pitfalls before implementing an IAM solution

Watch out for these pitfalls before implementing an IAM solution

Cloudworks Group AS

Cloudworks Norge
Cloudworks AS
Org.nr. 927 879 662

Karenslyst allé 2
0278 Oslo
(+47) 22 49 07 30
kontakt@cloudworks.no