SaaS Security Administrator's Guide
    : Assess Identity Security
    Focus
    Download PDF
    Focus
    1. Home
    2. SaaS Security
    3. SaaS Security Administrator's Guide
    4. SaaS Security Posture Management
    5. Assess Posture Security
    6. Assess Identity Security
    Download PDF

    SaaS Security Administrator's Guide

    Assess Identity Security

    Table of Contents

    Assess Identity Security

    Use the Identity Security component of SSPM to identify misconfigurations in your identity posture.
    SaaS Security Posture Management includes an Identity Security component to help you identify misconfigurations in your identity posture. Specifically, the Identity Security component gives you visibility into the following problems:
    • Issues with your multi-factor authentication (MFA) implementation. The Identity Security component of SSPM uses information from your identity provider to give you visibility into these problems, which include MFA enrollment and sign-in issues.
    • Issues with Salesforce accounts. The Identity Security component of SSPM uses information from your Salesforce instance to display risks for human accounts and also for non-human accounts. Risks include dormant accounts, overprivileged accounts, and accounts that have not had their credentials rotated for a specified period. The Identity Security component also uses information from your identity provider to identify local accounts, which are accounts that were not created through your identity provider.
    You can integrate the Identity Security component with either the Microsoft Azure or the Okta identity provider. To integrate the Identity Security component with Okta, complete the onboarding instructions for Okta. To integrate the Identity Security component with Microsoft Azure, complete the onboarding instructions for Microsoft 365. Completing these onboarding steps enables SSPM to scan your Microsoft 365 or Okta instance for misconfigured settings, and also enables scans for the Identity Security issues.
    1. To navigate to the Identity Security dashboard, select Posture SecurityIdentity.
      If at least one instance of the Microsoft Azure or Okta identity provider was already onboarded to SSPM, the Identity Security dashboard displays identity-based issues that it derived from the identity provider. If no instance of the Microsoft Azure or Okta identity provider has been onboarded to SSPM, you are prompted to Add Provider.
    2. Inspect the information displayed on the dashboard to understand the problems that the Identity Security component detected. Take action as needed to resolve these problems.

    © 2024 Palo Alto Networks, Inc. All rights reserved.