Simplify the Deployment and Centralize the Enforcement of Multi-Factor Authentication

Palo Alto Networks® and Okta® have joined forces to make it easy to deploy multi-factor authentication. By integrating Palo Alto Networks Next-Generation Firewall with Okta Adaptive MFA, organizations can rapidly provision multi-factor authentication and single sign-on without the need to touch their applications.

User Names and Passwords Are Not Enough

Credential-based attacks have been wreaking havoc and causing headline-generating breaches and downtime for years. In fact, 81 percent of hacking-related breaches leveraged either stolen or weak passwords.[1]  Despite this risk, many organizations resist putting controls in place to prevent these attacks.

Multi-factor authentication thwarts a wide range of credential abuse, including pass-the- hash attacks, brute-force attacks, credential stuffing and more. By forcing users to provide multiple types of identification, it prevents most credential-based attacks.

Unfortunately, many organizations do not protect all their applications with multi-factor authentication because some of their applications, including custom and legacy applications, may not natively support multi-factor authentication. As a result, they expose their sensitive resources to credential abuse.


Palo Alto Networks and Okta Collaborate to Stop Credential Abuse

Palo Alto Networks and Okta have partnered to simplify the setup and management of multi-factor authentication. Now, organizations can effortlessly roll out strong authentication across their networks without the need to update their applications and servers.

Palo Alto Networks Next-Generation Firewall prevents credential abuse by enforcing multi-factor authentication before allowing users to access specific applications or systems.  The Next-Generation Firewall integrates with Okta Adaptive MFA to verify user identity.

Palo Alto Networks Next-Generation Firewall can serve as a multi-factor authentication gateway for web or thick client applications, providing centralized management of authentication policies for all applications within an organization. Controlling authentication policy at the firewall allows organizations to enforce multi-factor authentication without the need to modify their applications.

Benefits of the Palo Alto Networks and Okta Integration

  • Easily deploy multi-factor authentication across your organization without updating applications.
  • Support a wide array of authentication methods, including OTP, SMS, voice and Okta Verify with Push.
  • Enforce multi-factor authentication to critical systems such as SCADA and mainframe servers.
  • Address PCI and HIPAA requirements for strong authentication and access controls.

Preventing Credential-based Attacks Across the Attack Lifecycle