Okta is an integrated identity management service that leverages an on-demand cloud platform and secure integration with existing Active Directory infrastructure. Okta’s core service is a multi-tenant solution with an Active Directory agent that installs locally but without any appliances or servers to buy or maintain. Okta’s agent makes a secure, outbound-only connection over HTTPS. After Okta authenticates a user with the cloud application, all ongoing traffic is between the user and the application. Okta supports delegated authentication, provisioning and de-provisioning, directory sync, and AD password management. Whenever a change occurs in either direction between Active Directory or Okta, those changes are synchronized incrementally. An administrator can deactivate a user in Okta Universal Directory, and the user’s record in Active Directory will also be deactivated instantly.