> ## Documentation Index
> Fetch the complete documentation index at: https://bloodhound.specterops.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Okta_KeyOf

> JSON Web Key associated with an Okta application

<img noZoom src="https://mintcdn.com/specterops/tTIczgde9H07oLXf/assets/enterprise-AND-community-edition-pill-tag.svg?fit=max&auto=format&n=tTIczgde9H07oLXf&q=85&s=ad49a576589f4d2a8081df77d07fdf56" alt="Applies to BloodHound Enterprise and CE" width="482" height="45" data-path="assets/enterprise-AND-community-edition-pill-tag.svg" />

## Edge Schema

* Source: [Okta\_JWK](/opengraph/extensions/okta/nodes/okta_jwk)
* Destination: [Okta\_Application](/opengraph/extensions/okta/nodes/okta_application)
* Traversable: ✅

## General Information

The traversable Okta\_KeyOf edges represent the relationships between applications [Okta\_Application](/opengraph/extensions/okta/nodes/okta_application) and their JWKs:

```mermaid theme={null}
graph LR
    app1("Okta_Application OktaHound Collector")
    app2("Okta_Application Security Scanner")
    key1("Okta_JWK ABC123")
    key2("Okta_JWK DEF456")
    key3("Okta_JWK GHI789")
    key1 -- Okta_KeyOf --> app1
    key2 -- Okta_KeyOf --> app2
    key3 -- Okta_KeyOf --> app2
```

Possession of the private key corresponding to a JWK allows an attacker to authenticate as the application. The Okta\_KeyOf edge can be used in BloodHound to understand which applications use JWK-based authentication and trace potential attack paths involving compromised private keys.