Listen to our Carahsoft podcast featuring Okta and Netsync for an opportunity to hear from your peer, David Potter, Sr. Manager of ESD, as he discusses his journey to achieving a modern identity platform for Tampa International Airport.
Speaker 1: On behalf of Okta and Carahsoft, we would like to welcome you to today's podcast focused around identity one on one, a customer's journey to a modern identity platform where David Potter Senior Manager for enterprise service delivery at Tampa International Airport, Mark Lynd, head of digital business for Netsync Skylar Barnes, sales engineer for Okta, and Hugh Miller, head of innovation and strategy for Netsync and former CIO in the city of Dallas in San Antonio. We'll discuss David Potter his experience as an Okta, customer and his journey to achieving a modern identity platform for Tampa International Airport with Okta. Additionally, our featured speakers will touch on the foundation of identity management, the critical role in obtaining a secure and modern identity strategy and how to achieve safe and secure digital services for the government workforce and its citizens.
Mark Lynd: Yeah, hi, everyone. This is Mark Lynd. And today we're going to be doing Identity 101 with Okta and Netsync. And we also have David joining us from the Tampa airport. And we're gonna be talking about the customer's journey to modern identity platform. We're going to kick things off, you know, talking a little bit about why Okta and identity, especially identity management and kind of one on one is important for the public sector, as well as commercial, but specifically public. And you know, one of the things is everybody's trying to striving to do more with less, they're looking to automate, they're looking to be able to identify when things are happening the right way, the wrong way, etc., etc. and all that kind of ties in to identity. And if you look at some of the things that are going on out there around security with the rise of ransomware and breaches and it's kind of top of mind for a lot of people, and definitely part of the overall new cycle. The important thing now is, you know, how do I get started with that? What are some of the fundamentals if you're using something like an approach like Zero Trust, identity is fundamental to that. And so that really fits in with Identity 101. Okta has some really amazing capabilities that we're seeing a lot of public sector clients drive towards things like MFA, SSO things that a lot of people are using, or are, you know, looking to use or upgrade are really important, but it's there. They also have things like Lifecycle Management, so much like onboarding, onboarding, things like that. Also directory services. And then also being able to merge in your cloud, along with your on premise. And in a hybrid cloud environment. And identity becomes really, really important there. And just knowing things like that person logged in, they logged in, in Austin, and an hour later, they logged in from Shanghai, we might have a problem, being able to identify things like that having automation around those pieces has really become important. And so we're gonna be talking about that today with the panel. And we really, once again, want to thank you for joining us. I'm now going to turn it over to Skylar from Okta. He's fantastic, and he's going to talk a little bit about some of his finer points. Skylar?
Skylar Barnes: Thanks, Mark. So about modern identity, so it's no big secret now the world has changed. So we absolutely that's one heck of an understatement, especially in the past year or so. The people now depend on the cloud in some ways that we did see coming and other ways that no one really could have anticipated. Now, first, organizations are moving to the cloud for their employees. In the past, you used one stack, you bought into Microsoft SAP or Oracle's on prem suites. But that's clearly changing. Today, you have your own on premise solutions. And legacy is going to be legacy for a long time, mixed with the best of breed cloud applications. So something like slack for communicating with colleagues or a zoom like we're on right now for video conferencing. And these are essential tools when we're as distributed as we are today. Now, your workforce is more than just your employees. It includes contractors, partners, to everyone in your org who gets work done. And you want to empower them with the best technology regardless of whether the systems they need are in the cloud, on prem, or a mixture of both organizations and agencies are digitally transforming in order to better interact with their citizens. In the past, you had to build and maintain every element of citizen facing technology, websites, mobile apps, etc. do it all yourself, including servers and data centers. This has clearly changed. Today, the organizations they're delivering the best user experience are the ones that are leveraging cloud infrastructure. So be AWS Azure. Or GCP, to build modern consumer friendly applications, which they can get to market faster. And you're doing this because you need to deliver a seamless and secure customer experience. Today, you're tasked with scaling your organization and delivering the seamless customer experience, while your people are distributed and remote, likely completely remote. So I'm coming from my home office in a bedroom and an apartment my kids play next room. So it's likely a lot of you are doing something pretty similar. And this brings a lot of new security challenges. And none of this matters if you aren't secure. The traditional perimeter is now gone. In the past, you could put up a firewall to act as a barrier between the trusted internal network and the untrusted external network. Clearly, that doesn't work anymore as your people, applications and devices have moved outside the perimeter. Like what we're experiencing now, of course, with the mandatory work from home that only emphasizes that today identity is the new perimeter. Without an identity solution, you have no chance to just look at the numbers. Since 2005, there have been 9000 public breaches, there have been 10 billion records exposed, and over 80% of these have been caused by lost or stolen credentials. So with the traditional perimeter gone, it's more important than ever before that you need to protect the identities of your workforce and customers. Well, you need as a solution that can address this risk, ease the burden and speed you on your way. Identity is critical to making this all CIO see identity is critical. Modern identity enables you to roll out new technology quickly reduce the complexity of managing separate off policies across on prem and cloud, and automate provisioning and de provisioning. Identity is critical to modernizing it. CTO c identity is critical. Identity is now a service you simply embed into your application development lifecycle, allowing developers to focus on customer experience and not worry about the burden of off security. Identity is critical to delivering that secure, seamless customer experience, and CISO identity is critical as well. As you embrace the cloud and mobile world identity becomes the single control point across users, devices and networks. Identity is the critical foundation needed to adopt a Zero Trust security model. No matter your position, you need to connect your workforce and your customer base with better technology. And that's our vision to enable any company to use any technology and we do it with modern approach to identity with the Okta, Identity Cloud. It's an independent neutral platform for your workforce. So being vendor neutral and agnostic, allowing you to adopt best of breed. Whatever you see, fit is best for your organization, your agency. It’s scalable and secure platform for customer identity. And it provides an identity centric approach to Zero Trust. The Identity Cloud can address every identity use case for all the people who matter inside your Oregon out. And every identity technology. They are every technology they need to connect to. So apps infrastructure API's, whether those apps are in the cloud, or on prem, whether your infrastructure is in the cloud or on prem, and whether your API's are public or private. We're the only cloud delivered identity platform for every Access Management use case. The Okta Identity Cloud is underpinned by a set of platform services, or integrations directories, the Okta, identity engine, and new technologies like workflows. Those platforms, services power, our industry, leading workforce and customer identity products. Those products can be leveraged via API or SDK, in order to build any type of identity experience you'd like on top of Okta. But of course, the Okta, Identity Cloud is nothing without what it connects to you. Which is why we've built the Okta integration network. So the broadest and deepest catalog of integrations in the industry, we have over 6500 integrations across various categories, single sign on for applications, automated provisioning, your onboarding, off boarding, and in doing so in an automated fashion, and of course, Zero Trust integrations. Everything we've built everything we've connected to helps you accomplish these three initiatives, modernizing it, delivering a secure, seamless customer experience, and adopting a Zero Trust security model, reducing the cost of becoming more efficient, providing a modern user experience that end users citizens constituents come to expect from everything that they interact with, and reducing the risk and the cost of a security incident. And we have 1000s of customers who are successfully doing this with various state agencies and municipalities, etc. across the United States. To meet our customers’ needs. We've created the category that is sometimes known as identity as a service. We're access management. Nobody has ever out executed Okta in either a Gartner Magic Quadrant or Forrester wave. This validation comes in large part because of our execution. We have the best technology and the best platform, and we make our customers successful today. But it also takes our vision into account. Well, we enable our customers to, again, use any technology. That vision applies to today's technology. But it also applies to a future state. We've built the world's only identity platform, it's flexible. Every technology, whatever comes next has to connect to people. And identity is essential to that. What we've built will power us and you into the future. So with that, I'll go ahead and pass back over to Mark and Hugh.
Mark Lynd: Yeah. Thanks, Skylar. Hugh, you want to introduce yourself? Yeah,
Hugh Miller: Hugh Miller. I'm the head of innovation strategy for Netsync. I've been a Netsync for a little over a year. Prior to that I've spent about 19 years of my career in public sector, most recently in public sector was the city of Dallas as their CIO. About two years. Prior to that I was a CIO consultant to several organizations. And then prior to that I was CIO and city of San Antonio for 13 years. And then I was at the San Antonio water system, which is municipally owned for two years as the person that led their IT group. So one of the beautiful things with what Okta offers solves a huge amount of problems that I used to deal with and public sector and one of them is the lifecycle management component. I can't tell you how many times as a leader of large IT organizations that I would get a call from different leader, a director, or someone in the executive office that had someone starting in their organization, and it had not provisioned them to start in ample amount of time. And in essence, it should be before they've started or right as they start as they're going through onboarding that their accounts ready, they're able to log in. And that struggle has been in many organizations and, and then if someone decides to, you know, they have a different position inside the organization, you need to move them. That becomes very complex to typically because like in San Antonio, and Dallas, we had hundreds of business systems that needed some level of identity, some of them would integrate into Active Directory, some had their own directory, some we built a specific tool to help that manage, but you ended up going through every single one of those to build profiles. And the beautiful thing to Okta has is it builds rolls and integrates to these systems. And when someone on board, you activate them, and it populates through all of those systems and activates them. And then if you're moving them, it shuts down the ones that they don't have access to an admin to the ones they do. And then if you're removing them, it then shuts them all down all in a singular dashboard for administrator. So that was it's just a beautiful thing that is a powerful tool that most people are struggling with.
Mark Lynd: Yeah, wouldn't you say also, it's, we're seeing a lot of interest out there. And the interest is a lot of people aren't aware about the lifecycle management and the automation and the capabilities surrounding that a lot of times we're talking to them about MFA SSO directory services, some of the things are, you know, working with ad, etc. But we've really seen a big upturn, and a lot of clients, customers really liked that capability. I'm glad you explained that. I think at this point, too. We want to introduce David Potter from Tampa International Airport. David, do you want to introduce yourself, please. And then we can kind of talk amongst three of us kind of cover some more Okta, elements.
David Potter: Absolutely. Hi, everyone. Dave Potter, Senior Manager for enterprise service delivery. That includes our cloud and infrastructure services over at Tampa International Airport.
Mark Lynd: Fantastic. So what would you say? You know, just to just to kind of kick it off, David, what has kind of been your if you've got to share his experience with Okta and some of the things he's seeing, what are you what are you seeing and when and what have you experienced so far?
David Potter: The exact same thing that I have to say Hugh kind of stole my thunder with, that we're gonna talk about here. But it's such a common theme amongst organizations. You know, one of the challenges that we still are working through and are going to look to leverage Okta, for us, the whole lifecycle management, these onboarding, onboarding, whatever you want to call it transfers included, the biggest issue there is, beyond onboarding a user who transfer user to a different department, different team, their existing access generally goes along with them, and they're just given more access to everything. So instead of as pruning and, you know, trying to work towards that great goal of least privileged access, you know, we've got a lot of people that have high tenure that have free access to file folders in systems that they don't need anymore and it just kind of lingering out there. So lifecycle management's gonna help us clean that up in an automated fashion to ensure as we get those transfer orders as we get those onboarding or onboarding orders, we give people the right things at the right time for either starting or, you know, moving for transitioning to a new position or to new opportunity.
Mark Lynd: Fantastic. You know, I think one of the one of the other things is kind of shocks a lot of people because Okta is a cloud product. And because it is such a low latency product, its ability to like, start to look at it from a PLC or POV to kind of see what the power is how this thing works, is so easy and working with a cloud, it's just so much easier to implement, and roll out and start to realize some of the value of benefits. Did you kind of have a similar experience?
David Potter: We did with all of our purchases, we always try to evaluate, you know, who were the major players out there? You know, what are we trying to achieve with the goal here, both the immediate needs, as you mentioned before, kind of the entry level items, multi factor authentication, single sign on universal directory, those are some of the you know, basic things. So looking around to see who has you know, those options, and then looking to do some proof of concepts kind of test it out, as well as some of the more advanced features like Lifecycle Management, Advanced Server authentication, things like that. We're gonna look down the rise in there. But in terms of getting set up with Okta is fairly easy. They kind of make it foolproof though even I could help set up the proof of concept there. And of course, we'll have that to the experts on my team to work through but the guys that Okta provides and our integration network to walk you through the setups, then it gets really easy, especially with all the unknown quotes beyond the number here, but there were 1000 apps that are in that store there. So I doubt you're going to run into an issue where you're gonna have a solution that doesn't integrate with that. And if you do, you reach out to Okta support, and they're willing to work through it with you and give you some actions to make it work. So it was one of the easiest proven concepts, we went through the kind of proof it out and say, this is the right solution for us.
Mark Lynd: Fantastic. Hugh, you know, talking about that, and what we saw, like with the city of Dallas, kind of along with that similar vein, is there some things in there, you know, like the integrations, and that was something that Brian and them considered quite a bit as well. Right. We heard that quite a bit. And as they're going forward with that, that's a big part of why they chose that similar to what David was talking about.
Hugh Miller: Yeah, in compass the volume of integration, which I believe Skylar said, those over 6000 apps that are already natively integrated, the simplicity of the product, and I think that was a huge thing. You know, with if you look at modern enterprise IT, it's very complex. And when you look at like, as a city, large city, we had close to 40 departments that were essentially independently ran businesses, and integrate like most companies, you have departments that basically glue together that deliver some typically singular or small amount of things to their customers. In the city, you have this mass array of, of departments that really don't rely on each other, and they don't really work together. So you have many standalone systems that are delivering fairly proprietary services. And having a tool that's able to, like aggregate them into a singular identity system is huge. I mean, that's massive. And then the other really big component that was beneficial that, that as many organizations start progressing and maturing with Okta, they then can look at their external customers, like citizens or customers for a private sector company. And it has an identity component for that that also adds in this nice layer of, of identity that you can manage them. With that you add a single sign on dashboard, that's very simplified. So if they have rights to the system, there's a dashboard icon that's ready for them to know, these are the things I have access to you. They click on it. They talk to Okta, it logs them in, and you're good to go. So it's just this suite of components that are embedded in their toolkit is just, I mean, it's massive. And it's so the way they've done it, it's become so simple. And it, it almost doesn't seem like it's supposed to work.
Mark Lynd: It's funny you say that because a lot of times we talk about it when we're first discussing it with a potential customer or prospect, we always talk about it's simple and secure, right? It happens all the time. I think one of the things that a lot of people are starting to realize that if you're looking at NIST or Zero Trust, or some security framework, there is a need to simplify but there's also a need to have the basics and identity is such a basic element of those two security frameworks and pretty much every even some of the more private or you know verticalized frameworks density is a critical element to that. I wonder, David, did you take that into was that part of your decision process is how it was going to fit within your security framework and what impact it might have?
David Potter: Absolutely. A couple of pieces you guys are talking about, it was really important to us there. So, you know, he was talking about the complexity of the systems that we have, and it's continued to expand. And I think with the, you know, we have until 2020, we've had a massive acceleration and the whole digital transformation aspect there, but a lot of it was around giving people access to the systems and solutions that they needed to continue functioning in some capacity, whether it's remote on site, you know, socially distance, whatever it might have been, I feel like it ballooned, or quickly expanded our portfolio of solutions and applications. And, you know, when you're on premise, and you kind of control things, you know, locally, you can kind of get by with a with a basic identity plan, you know, ad groups, that'll solve everything for us, right? If it's not ad integrated, okay, that's fine, we'll just stick with a separate login. But as soon as you dip your toe into the cloud, or you got a lot of off-site, staff and everything, you need something a little bit more robust. And something that centralized to allow you to collate all these various identities across all these different systems into your point, also maintaining security over all those pieces. Now you got people off network that are accessing resources and services that you can't just say, well, they're local, you know, they're on site, so everything is good. Well, as you mentioned before, you might have somebody that has a successful login, in our case up in Lakeland, Florida, you know, but then they'll have a successful login in China or Russia or wherever it might be. That's impossible travel, right. So we need to make sure that we can protect against those things there. And, you know, we're in a unique situation, we have a couple of security directors there, we have our own police department. And we also have PCI for our parking environment there. So those were two security considerations, we had to take into account with regards to what solution or workforce there and could support us either with sub tenants that we could isolate, to ensure no expansion of scope, as well as the logging and advanced directives that seizures and probably looking for, in terms of access, you know, disabling self-service, password resets, managing remote identities or mobile identities on devices as well, so often really checked all the boxes for us as we work through a lot of different pieces there. And in situations where, you know, the literature may not explain it clearly. Or we run into a situation where this is what we're trying to accomplish here. To say the support has been fantastic there to work through the situations and solutions with us to find something that meets our needs, which has been great the flexibility of the system.
Mark Lynd: It's interesting. I think one of the things that that kind of comes across to your point is every customer seems to have and every person that kind of looks at Okta tends to have a different feature or capability or requirement. And the interesting part is the how broad the Okta product is, and the summit and how you can apply that because what we keep seeing over and over and over is once a customer implements it, well, I just really, this is for MFA, and SSO and that's it. But then once they get into it, and they see the other things, the integrations, the directory services, that lifecycle etc. The on premise server connect those types of things really do make a difference. And I think one of the things and you kind of you touched on it briefly, a lot of people don't realize Okta backs up Active Directory. And Active Directory can be a security risk. And so having often using it for that reason, can have a lot of additional value. And I think that's one of the things that when we talk to customers about Okta, and that's what you and I do a great deal of. It's always interesting. Once the once we get past what your requirements and how Okta meets that, we start talking about some of the other things it does, and they just kind of look at you like, I didn't even know it did that I never thought about backing up ad I never thought about, you know, the directory services. I didn't know that I could have our loyalty program, people can log in and have a single identity platform. Some of those things stand out. Hugh, do you have some thoughts around some of the pieces in terms of some of the feedback that you and I can share, along with David that would help some of the listeners?
Hugh Miller: Sure. One of the other big components that Okta brings is universal directory. And like most large organizations have, like, for example, and we're talking a lot of public sector here, you usually have more than one instance of active directory and typically you're supporting public safety. You have your traditional operating components and then like we had a separate one for like the library and other entities. You then have universal directory, they can basically bring those in, you extract the attributes in each one of those directories and then you singular manage it in Okta, which simplifies that in a major way. Most people when they see that part, they're blown away because they struggle with that over and over. So that's another one of the key components that Okta is added to their, into their toolbox.
Mark Lynd: David, did you have one of those aha moments once it came in? There's something that you found in Okta that you didn't realize during the demo process or their evaluation?
David Potter: I would say the rest of the teams have aha moments. I've been trying to bring the groups around to saying, you know, we need something better. It took us a while to say, yes, Active Directory as being, you know, our identity management is a solution there. And it took some time to open people's eyes and saying, we need to do more, don't you realize that this is an issue here, onboarding has been a running concern, or I say, a running joke at times, with our services team with? Oh, I didn't know that personal starting today. That's great. Well, let's, let's run through the paperwork, trying to get them taken care of here. What do they need? So you know, processes work great. But if you can automate the process, and you can establish some birthright applications, or you can say, this kind of role, this kind of position, this type of team needs access to these things. There's no need for the team to get concerned with because it's taken care of by virtue of hiring somebody or updating their department information in our hrs system that flows into Okta, and often says, Okay, I know what to do here, you've given me the guidelines, I will provide access to the systems, I'll make sure I take away access to these other systems. And everyone goes about their day. And you know, the system just kind of works in the background there. But it took a while with the teams to kind of come around and say, yeah, we need something else we were trying to, initially we're trying to work through some, maybe one off or bolt on solutions, like, let's address them. Okay. Well, there's a bunch of companies that just do NFA. Okay, well, that's part of the puzzle. Now we're adding to the complexity of our environment here. Don't we want to just go with something that can do that and more? And I feel like that's a lot with Okta. You know, it can do MFA end also, can do you know, your single sign on, and also, it can handle your Lifecycle Management. Oh, you're also wanting to explore Zero Trust, oh, we've got an option for you, as well forthcoming baking cookies for you as well. So it's been a great platform for us. But it took a while for me to kind of look beyond that. And say, yeah, there's a lot of value here. And as we are progressing, now, I'm starting to hear from the teams. Hey, it'd be great if we could use Okta to do X. Well, absolutely. That's on the roadmap, here's how we can work down that. What else can we do with it? So the team has really embraced it, which has been great. And it's been good, I'm glad we finally made the decision to move forward with it across the organization. And it's really paid dividends for us on the back end in terms of managing it securing everything, we're actually able to put our security teams at ease knowing that things are audited, we have risk based authentication in place, which is great. So it's been good.
Mark Lynd: Yeah, you know, you touched on something there. I think that they also Okta has a very rich set of automation capabilities, that don't really get covered a lot. And in fact, Schuyler typically demos those and talks about those. And it's later kind of after you kind of get your other pieces in place, like you mentioned, with MFA and SSL, etc. And then you're like, Well, can we do this? And it says automation rules that really kind of rise to that. I had a thought he and I were actually talking about this yesterday, did you take advantage of their proof of value? By No, they have a dedicated team to that. And often it's kind of unique as a manufacturer to provide that capability. It seems that they're so comfortable and what they provide the value they provided they have the proof of value business team that does that they interview they talk about what are some of your challenges? What are this? And how can we save you on resources and all that and put that all together and bring that back to you? Did you take advantage of that?
David Potter: Yeah, we did. You know, as part of our proof of concept process, we're always looking for the free trial, the free test ride. And for the most part, you know, most of us are happy to give you a 14-30 day trial. Oh, but you want support or you need help configuring? Well, that's, you know, that's extra, you know, with our pilot, we walk we walk through all that we got this for we needed to really prove it out and say this does everything we're looking for. And, you know, to your point, we were going over some specific items, right? We were trying to address some immediate concerns with MFA, and single sign on. And so, you know, we were able to achieve those pieces there. Knowing that, hey, as we mature with our organization, as we continue onboarding applications and everything, the next step is lifecycle management. So we'll be able to step up to that piece there. But as far as that proven value piece, so they didn't, they didn't kind of highlight. Here's some great opportunities for you guys to improve and of course, everyone was sided, and everyone wants it tomorrow. So we're going to put some work in, we got a roadmap to achieve all those goals.
Mark Lynd: Gotcha. Yeah. I've never heard anybody wants it tomorrow. Hugh, is or is there something else that in there that you think we haven't highlighted that we really need to mention about Okta, and maybe even you know, how I interact with the customer?
Hugh Miller: One thing I was thinking about when David was talking, and again, it, it sort of continues to highlight the lifecycle management, a lot of public sector entities oversee, like it oversees the public safety component. And like, for us, we had, like the police department specifically has an insane amount of roles that they that they shift into. So one person can actually be over burglaries one day, and then someone takes leave, and then they shift into a completely different role, like gang or some other thing that they're suited for. And with that, comes a whole different set of access components and systems that they're supposed to get into to manage it. And, and really even the, who they are in the when they build the reports and all the other things. So if you build those roles in advance, it's an easy shift. But like with the times that you and I had shown, police departments this, they kind of got floored, I remember one time we were talking with one entity, and they were like, you know, I'm really not sure why the what value this tool would have for us and we began to market, I begin to start talking about the value of that particular scenario. And by the end of that conversation, the guy's like, this is a no brainer, I've got to have this tool. So it's things like that, that, you know, most people struggle with, they've almost accepted the fact that they're going to struggle with it. Don't believe that there's going to be a tool that's going to come along that actually simplifies that for them. And over and over. That's those type of things that Okta has done. And then additionally, you talk about MFA. They also offer adaptive MFA, which was discussed earlier, which basically gives you the ability to, to put rules in place, and they have adaptive both for MFA. And if you don't have MFA, it also will work with their other tools that like Single Sign On, that gives you the rules that says, you know, you're in the corporate network, and here's the way that we're gonna authenticate you. If you shift to your house and you're working remotely, it's, it's a different way that we're going to enhance the way that we authorize you. And if you go out of state, it shifts to a completely and it just key, you can keep advancing that and choosing and then if you have people who, by their normal job access, very sensitive systems, you then can set higher parameters specifically for them. And that kind of depth of the toolset makes it extremely powerful.
Mark Lynd: Yeah, that's fantastic, Hugh. David, you've gone through the process. You know, you've seen how this works with Okta and some of the value and along that path, do you have any recommendations or a tip or something that you would think that the audience would gain some value out of about your interaction with Okta and how it's went where you are so far?
David Potter: I think, was the ease of our interactions and the success of the demos and the proof of concepts and the implementation, I don't know that there's any tips or tricks really to go through? Because generally, that would indicate that there might be some difficulties there. I think one of the things to keep in mind, it's always to keep an eye on the future state. Where do you want to be? You touched on it just a minute ago, talking about understanding, you know, it's easy, if you build your rolls, and all those other pieces up front, none of us are probably in that situation. Now, we all have inherited, hopefully, semi normal at structures and various logins and everything across these other systems here, but establishing you know, what the different team members need staff, customers, citizens, whatever your whatever your business is able to set up with those roles are, is really important to better leverage some of the more advanced features like lifecycle management, and all those other pieces there. So you know, keep an eye into that you don't need to be perfect to get started with it, you know, and one of the benefits is working with offices, they can look and give recommendations based on previous implementations and say, here's what's worked best. Please make sure to, you know, watch out for these things, as you're, you know, continuing to grow and expand there. So, the only tip I would say out of all of it, is keep an eye on the future state in terms of where you're trying to go beyond the you know, the table stakes, if you will of MFA and single sign on So that way, you're making good decisions now in terms of role structures, assignments and things like that. To support you in the futures you have to go back and kind of rework or add to any of your technical debt.
Mark Lynd: Yeah, that's awesome. Well, thank you, David. That was that was really good. And I want to thank David, and you for joining us today and you know, talk a little bit more and guys always to the wonderful Skylar.
Speaker 1: Thanks for listening. If you'd like more information on how Carahsoft or Okta can assist your organization, please visit www.carahsoft.com or email us at okta@carahsoft.com. Thanks again for listening and have a great day.