AWS Observability with Okta
Contact us to book this course
On-Site, Virtual
1 day
This foundational training demonstrates how to leverage Okta's Identity Cloud for monitoring and securing AWS environments through integration with AWS observability services. Students will learn to centralize identity-driven security monitoring, establish comprehensive audit trails, and implement performance tracking across AWS infrastructure.
By the end of the day, participants will understand how to query Okta System Log data to feed AWS CloudWatch, correlate identity events with AWS CloudTrail for compliance, and secure access to AWS observability tools using Okta's SSO and MFA capabilities.
Learning Objectives
Configure Okta integration with AWS SSO to provide centralized authentication and authorization for AWS resources.
Query the Okta System Log API to extract authentication, authorization, and security events for monitoring purposes.
Send Okta event data to AWS CloudWatch Logs and create custom metrics and dashboards for identity-driven monitoring.
Integrate Okta authentication events with AWS CloudTrail to establish comprehensive audit trails for compliance reporting.
Implement AWS X-Ray integration to track authentication flows and performance across distributed applications.
Secure access to AWS observability tools (CloudWatch, X-Ray, CloudTrail) using Okta SSO with strong Multi-Factor Authentication.
Execute Business-Aligned Observability by completing a vertical-specific lab (Fintech, Healthcare, or Media) to solve industry-specific AWS challenges.
Who Should Attend
Cloud architects, engineers, DevOps professionals, and security teams working on AWS-based applications or implementing identity-driven observability strategies. Some previous experience with AWS services (EC2, IAM, S3) and basic identity concepts (authentication, SSO, MFA) is assumed. No prior Okta experience is required. Basic familiarity with JSON and REST APIs will be helpful, though programming/scripting is not required for core course activities.
Course outline
- The Modern Observability Challenge
- Okta Identity Cloud Overview
- AWS Observability Services (CloudWatch, CloudTrail, X-Ray)
- The Integration Value Proposition
- Lab: Okta Demo Account Setup and Configuration
- Understanding AWS SSO (IAM Identity Center)
- SAML Federation and SCIM Provisioning
- Security Considerations: MFA and Conditional Access
- Demo: Configuring Okta-AWS SSO Integration
- Okta System Log Deep Dive
- Okta System Log API Fundamentals
- AWS CloudWatch Logs Integration Architecture
- Monitoring Use Cases: Security, Compliance, Performance
- Demo: Sending Okta Logs to CloudWatch
- AWS CloudTrail Overview
- Correlating Okta and CloudTrail Events
- Compliance Requirements (SOC 2, HIPAA, PCI DSS)
- Advanced Audit Strategies
- Demo: Building Unified Audit Trails
- AWS X-Ray and Distributed Tracing Fundamentals
- Authentication Flow Tracing
- Application Performance Insights
- Monitoring Best Practices
- Demo: Tracing Authentication Flows with X-Ray
- Vertical-Specific Strategy
- Fintech Lab: High-Frequency Fraud Detection
- Healthcare Lab: Redacting PII with Sensitive Data Scanner
- Media Lab: Monitoring Global Streaming Performance
