Commvault Expands Identity Resilience with Okta, CloudSEK

Commvault announced two new capabilities aimed at strengthening enterprise identity protection, expanding its Identity Resilience portfolio with support for Okta, and introducing a new integration with threat intelligence provider CloudSEK.

The add capabilities focus on helping organizations respond to the growing wave of identity-based cyberattacks, as credential theft and exposed identity data become a primary entry point for attackers.

Commvault adds Okta support to identity resilience platform

Commvault said it is extending its Identity Resilience capabilities to include support for Okta, enabling organizations to recover identity environments after disruptions such as misconfigurations, operational errors, or cyberattacks.

Identity systems have become a critical control plane for modern enterprises as organizations adopt hybrid cloud architectures, SaaS applications, and AI-driven automation. 

At the same time, the rise of machine identities, APIs, and autonomous agents has significantly increased the attack surface.

Commvault cited data showing that 107 billion identity records were exposed globally in 2024, while 57% of cyberattacks began with a compromised identity.

When identity providers are disrupted, users can be locked out of applications and systems, potentially halting operations and causing revenue loss or customer-facing downtime.

“Identity is the new cyber battleground, with most modern attacks targeting identity systems,” said Pranay Ahlawat, chief technology and AI officer at Commvault. “By extending our Identity Resilience capabilities to Okta, we’re helping customers protect one of their most critical control planes so they can rapidly recover access and maintain business continuity even in the face of disruption.”

Automated Okta protection includes users, applications, and more

The new capability provides automated, policy-driven protection of key Okta objects such as users, groups, applications, and policies. IT teams can restore specific elements using granular point-in-time recovery rather than rebuilding entire environments.

Commvault said backup data is stored in immutable, air-gapped storage designed to protect identity information from ransomware and unauthorized changes.

“As identity-driven attacks continue to escalate, integrating Commvault’s Identity Resilience capabilities with Okta will give us even greater confidence that if our identity platform is compromised or misconfigured, we can recover quickly and precisely without rebuilding our entire environment,” said Phil Winder, chief of information technology at Delaware Department of Correction.

Industry analysts say the growing reliance on identity infrastructure is raising the importance of resilience strategies.

“Identity resilience is fundamental to achieving higher levels of operating resilience,” said Dave Gruber, principal analyst at Omdia. “While identity management and security have always been critical to security programs, the AI-era, and more specifically, the use of agent-based AI solutions, is elevating the importance of both identity and data resilience. Solutions that combine protection, immutability, and granular recovery across multiple identity providers can help reduce operational risk and recovery time.”

Availability details

Commvault said identity resilience support for Okta will enter public early access in spring 2026 and reach general availability in summer 2026.

CloudSEK integration targets exposed credentials and dark web threats

In a separate announcement, Commvault said it is integrating CloudSEK’s predictive threat intelligence platform with its Active Directory security tools to help organizations detect compromised credentials before they are exploited.

The integration brings CloudSEK’s real-time dark web credential intelligence into Commvault’s Active Directory Vulnerability Assessments and Active Directory Advanced Audit and Anomaly Detection solutions.

Commvault said nearly 80% of breaches involve compromised credentials, while more than 24 billion stolen credentials are currently circulating across dark web marketplaces, stealer logs, and underground forums.

Integration addresses threat intelligence challenges to deliver faster response times

By correlating external credential exposure signals with internal identity telemetry, security teams can identify compromised accounts earlier and take actions such as disabling, locking, or resetting credentials and rolling back malicious Active Directory changes.

“By integrating CloudSEK’s external exposure threat intelligence with Commvault’s Active Directory protection capabilities, we’re expanding customers’ ability to uncover hidden identity risks earlier and neutralize identity-based threats before they escalate – critical as attacks become more AI-driven and agentic,” said Ahlawat.

The integration also automatically scores and prioritizes risks across internal, public, and dark web sources, providing remediation guidance to help security teams focus on the most critical issues.

“In today’s AI-driven threat landscape, partnerships are critical to closing the gap between external intelligence and internal action,” said Nivya Ravi, AVP of partnerships at CloudSEK. “By embedding CloudSEK’s predictive threat intelligence into enterprise security workflows, we enable organizations to act on exposed credentials and identity risks before attackers can operationalize them. This is about shifting from reactive detection to proactive disruption.”

CloudSEK Integration availability details

The CloudSEK integration will be available this summer at no charge for customers using Commvault Active Directory Vulnerability Assessments and Active Directory Advanced Audit and Anomaly Detection tools, with optional upgrades to the broader CloudSEK platform available.