Closing the identity gap: What’s new this Launch Week

Welcome to our first Launch Week of the year – we’re excited to share our major innovations for Okta and Auth0 to help you make your agentic future a reality without compromising security. 

88% of organizations have already faced agent-related security incidents, yet only 22% treat these agents as independent, identity-bearing entities¹. This identity gap shows that the playbook built for humans doesn't work for agents.

At Showcase, we unveiled the blueprint for the secure agentic enterprise. This is our actionable guide to move your AI environment from "unknown and uncontrolled" to a state of verified, governed access by answering three critical questions: Where are my agents? What can they connect to? What can they do? 

This Launch Week, we're delivering key product innovations available now to empower organizations to scale identity safely — so you can accelerate innovation while preserving security, compliance, and governance.

Jump to Okta launches:

• Okta for AI Agents
• Secure Customer Identities advancements
• Identity security fabric use cases
• Okta for US Military

Jump to Auth0 launches:

• Auth0 for AI Agents advancements
• Tenancy-as-a-Service

The Okta platform: Protect every identity type with a unified fabric

To truly secure a modern enterprise, you need one place to see and control every identity type — without slowing the business down. Our latest releases help you see, secure, and govern every identity — from employees and customers to infrastructure and AI agents — in one unified fabric.

For more information on all of our releases, check out the Okta Launch Week Release Overview PDF.

Okta for AI Agents

Availability: Early Access

Regional availability: Global, excluding Okta for Gov Moderate, Okta for Gov High, Okta for US Military, India cell, or Canada cell. Japan cell customers can purchase Okta for AI Agents, however the ISPM components of Okta for AI Agents are not available in the Japan region

AI agents are your newest digital workforce, but right now, most are operating in the shadows. An unmanaged agent is a rogue credential with access to your most sensitive data. Okta for AI Agents is a solution that provides an identity layer for your agent rollouts. We bring your AI agents into your identity security fabric — allowing you to see, manage, and govern your agents at scale.

What’s new

Discover Agents

Bring AI out of the shadows with continuous discovery and centralized management for your agent identities.

• Shadow AI agent discovery allows you to find unmanaged agents across your cloud and SaaS environments — and quantify risk to prevent a breach. Check out our blog to learn more about shadow AI agent discovery. 
• AI Agent Registration allows organizations to register agents as first-class identities in Universal Directory with clear ownership mapping for human accountability.

Standardize Access Across Apps

Govern and unify AI agent access across SaaS and legacy systems through a single control plane. You can also increase security for the "keys to the kingdom" by vaulting credentials and enforcing context-aware, least-privilege policies for agents operating at machine speed.

• API Access Management allows AI agents to connect to an authorization server to enforce least-privilege with dynamic evaluation based on identity, context, and risk. It helps ensure consistent controls and prevents unauthorized lateral movement.
• Privileged Credential Management lets you connect agents to vaulted secrets and service accounts with a secure vault, automated rotation, and an audit trail for accountability.

Manage AI Agent Lifecycle

Bridge the AI governance gap by bringing autonomous agents into standard certification workflows — helping ensure actions are traceable to human intent.

• Governance for Agents as a Resource brings agents acting on behalf of users into standard certification workflows, organizations can maintain full control over who has access to AI agents. This enables automated access reviews, assignment of human owners, and enforcement of policies to help ensure agents retain only the permissions they need, with a comprehensive audit trail of their actions.

Your AI agents shouldn't be your biggest security vulnerability. With Okta for AI Agents, you get visibility, control, and accountability — at the speed and scale autonomous systems demand.

Learn more about Okta for AI Agents.

Secure Customer Identities advancements

Availability: Early Access

Regional availability: Global; authorized in FedRAMP Moderate, Audit Ready in FedRAMP High and DOD IL4, Available on OIE

Today, over 80% of identity breaches involve compromised credentials². Getting identity right has never been more important — and for organizations managing millions of external identities, the stakes are even higher. With advancements like Identity Threat Protection (ITP) for Okta Customer Identity, Okta secures your identity foundation by providing a continuous, identity-centric control plane that protects users throughout their session lifecycle.

What’s new 

• Identity Threat Protection: ITP continuously monitors sessions to evaluate risk in real-time. When a threat is detected, it triggers Precision Risk Responses, like Universal Logout, to stop attackers mid-session, ensuring security never comes at the cost of a frictionless customer experience. Learn more on the blog.
• Native to Web SSO: Deliver a frictionless user journey by maintaining a highly secure, unified authentication state across mobile apps and web pages, eliminating redundant logins while preserving identity continuity.

Identity security fabric use cases

Availability: Generally Available (see each use case)

Regional availability: Global

An identity security fabric is a blueprint for building a resilient, unified security posture — it’s what happens when identity tools and systems weave together into one cohesive layer. Okta brings this fabric to life through interconnected use cases — our threads — that address today’s most critical challenges. Together, Okta delivers end-to-end identity security across all identity types, use cases, and resources.

What’s new

• Enable highly secure hybrid & on-premises environments (Generally Available now, with certain features in Early Access): The Okta platform enables you to extend an identity security fabric seamlessly to your legacy on-premises systems and applications. This modern approach centralizes visibility, governance, access, and protection across your hybrid environment, allowing you to consolidate siloed directories and manage security for your cloud and on-prem resources from a single control plane.
• Secure workforce onboarding (Generally Available now): With Okta, onboarding isn’t just a step in the employee lifecycle — it’s a strategic advantage. We unify identity proofing, device access, passwordless authentication, and governance into your identity security fabric. Security is built into every moment of the experience, empowering IT and security teams to protect identities and get them to work safer and faster.
• Enable security-driven governance (Generally Available now): Okta provides a unified identity security fabric that replaces siloed, reactive compliance with proactive, real-time governance. By integrating Okta Identity Governance (OIG), Identity Threat Protection (ITP), and Okta Privileged Access (OPA), Okta helps stop attacks by automating threat remediation and eliminating standing risk through a single, IdP-native platform.

Learn more about the identity security fabric and check out the demo to see it in action. 

Okta for US Military (IL5+NSS readiness)

Availability: Varies by feature; see below

Regional availability: Restricted to US Federal

Okta for US Military provides mission-critical identity at the speed of relevance. Okta’s Military environment helps power agile missions and Zero Trust frameworks for the U.S. Department of War (DoW) and approved mission partners. With a unified, commercially available solution, mission app owners can drive greater efficiency in how applications are built, identities are maintained, and connections are scaled, while safeguarding mission-critical systems and workloads.

What’s new

• IL5+NSS readiness (Post-audit as of January 2026): Okta’s exclusive, cloud-native solution for the DoW is expected to be renewed by the U.S. Defense Information Systems Agency (DISA) at Impact Level 5 (IL5). This uplift will protect controlled unclassified National Security Systems (NSS) critical to mission functions and support IL4 and IL5 stacks in a single cloud environment, shifting the focus from infrastructure to innovation.
• Okta Access Gateway³ Offline Access (Early Access March 2026): When OAG loses connection to Okta, users can continue accessing on-premises applications. This capability, with key SAML integrations such as Zscaler’s Private Cloud Controllers (PCC), extends cloud access points to the tactical edge.
• Okta Identity Governance and Okta Workflows (Authorized February 2026): Now authorized for Okta for US Military. Okta Identity Threat Protection with Okta AI is post-audit.

The Auth0 platform: Secure your production-ready AI experiences

Your next competitive advantage isn't an app. It's an agent. The organizations going all in on AI — serving customers, powering employees, automating operations more securely and at scale — will be the ones everyone else is chasing. But here's the catch: the difference between a rogue agent and an enterprise breakthrough is identity. Auth0 gives developers the identity foundation to verify users, empower agents with safe access, and prevent data leakage — without slowing down your developers. Better secure every interaction from the first line of code. 

Check out all of our releases in the Auth0 Launch Week Release Overview PDF.

Auth0 for AI Agents advancements

Availability: Early Access

Regional availability: Global

Move from AI pilot to production faster. Auth0 provides the identity foundation to better secure your AI agents and make your products AI-ready. By getting identity right from day one, you can leverage the full power of identity to scale your AI initiatives and the smart, tailored experiences your customers demand.

What’s new

• Auth for MCP (Early Access): As the industry converges on the Model Context Protocol (MCP) as the standard for connecting products to the AI ecosystem, security cannot be an afterthought. Auth0 acts as the architectural enabler, applying proven identity principles to authenticate and authorize every MCP client call. Whether you are supporting 1st-party servers for internal teams or connecting to a vast 3rd-party ecosystem, Auth0 ensures your resources remain discoverable and interactive while staying rigorously protected from unauthorized access.

Tenancy-as-a-Service

Availability: Varies by feature; see below

Regional availability: Global

For B2B companies, moving upmarket is essential for growth, but building and scaling enterprise identity drains developer resources and delays the sales cycle. Auth0 offers Tenancy-as-a-Service, making it easier and faster to ship enterprise-ready identity, from multi-tenancy, to self-serve SSO and provisioning, to an admin dashboard, so your teams can stay focused on growth instead of identity infrastructure.

What’s new

• Organizations (Generally Available now): Represent each customer as a dedicated Organization with logical separation of users and data, and branded, federated login flow,  within a single Auth0 tenant.
• My Organization API and Embeddable Components (Early Access Mar ‘26): Quickly build admin dashboard, using either flexible API or modular, embeddable components that are purpose-made for developers. 
• Self-Service Enterprise Configuration: A ticket-based, self-service workflow that lets your customers configure SSO and provisioning on their own.
  • Self-Service Provisioning: Enable customers to configure and maintain their own SCIM connections through a guided wizard; Early Access available now, Generally Available April ’26.
• Self-Service SSO Templates: purpose-built, self-service template to guide customers set up SAML connections for Okta and Auth0; Generally Available now.
• Self-Service Domain Verification & for Org Discovery: enable org discovery by domain in the Self-Service SSO workflow without manual backend configuration; Early Access available now.

Learn more about Tenancy-as-a-Service in this blog post.

Experience the innovation firsthand

• Register for our Launch Week webinars to hear details from product experts on what’s launching, when, and how to deploy it:
  • Register for Okta webinar (April 14)
  • Register for Auth0 webinar (April 15)
• Watch Okta Showcase live — or catch the replay

Ready to go deeper? Explore the full scope of our innovations across Okta and Auth0 on the Launch Week Release Overview webpage.

These materials are intended for general informational purposes only and are not intended to be legal, privacy, security, compliance, or business advice. You are responsible for obtaining security, privacy, compliance, or business advice from your own professional advisors. Any products, features, functionalities, certifications, authorizations, or attestations referenced in this presentation that are not currently generally available or have not yet been obtained or are not currently maintained may not be delivered or obtained on time or at all. Product roadmaps do not represent a commitment, obligation or promise to deliver any product, feature, functionality, certification or attestation and you should not rely on them to make your purchase decisions. © Okta, Inc. and its affiliates. 2026.

¹ Gravitee, The State of AI Agent Security 2026, https://www.gravitee.io/state-of-ai-agent-security

² Verizon, 2025 Data Breach Investigations Report,
https://www.verizon.com/business/resources/reports/dbir/

³ Okta Access Gateway is a utility that runs within a customer's on-premises environment. As such, it is outside the scope of our authorization boundary. However, it is available for purchase and is fully supported by Okta Customer Support for this environment.