Skip to main content
All posts
Recovery LayerLaunchDisaster RecoveryOkta

Shipping Butterfly v1: identity disaster recovery for Okta-first organizations

Butterfly Security is generally available. Point-in-time backups, dry-run restore previews, signed audit evidence, and warm-standby continuity for Okta, Okta Workflows, and Auth0.

Mick Johnson
Founder, Butterfly Security
3 min read

Today Butterfly Security is generally available.

If you run identity infrastructure at a company that would have a very bad day if Okta went down, this post is for you. Here is what is live, and where we are headed.

The thesis

Identity is the new perimeter. Every other system depends on it. And yet the recovery story for identity infrastructure has been roughly: open a P0 with your IDP, hope for the best, rebuild manually.

That is not a recovery story. That is an absence of one.

Butterfly gives Okta-first organizations a real disaster recovery story. Point-in-time backups. Signed audit evidence. Restore previews that show you the blast radius before you commit. Warm-standby continuity so the next misclicked policy change is a non-event instead of a Saturday.

What is live today

Point-in-time backups of users, groups, apps, authentication policies, group rules, network zones, workflows, and more. Encrypted at rest. Retention per plan. Listed in the Okta Integration Network.

Continuity, generally available in the Business plan. Warm-standby identity that keeps your workforce signed in while the primary is being restored. No sales gate. In the plan.

Restore Readiness Score. A 0-to-100 number per connection that tells you whether you can actually recover right now, before you find out the hard way. Surfaced on the dashboard. Audit-logged on compute.

Audit Pack. One click, signed PDF evidence pack with a SHA-256 manifest, framework-filterable. Hand it to your auditor.

Restore preview with dry-run. See the blast radius before you commit. Diff any two backups. A resource-level timeline across every snapshot.

A free Chrome extension for Okta admins. Snapshot, X-Ray, API explorer, health scoring. Operator tooling for the people who live inside Okta Admin all day.

A Trust Center. Security posture page, RFC 9116 security.txt, SAML and SCIM published claims, a public /health endpoint, and SOC 2 work in progress.

What is next

  • iOS app for incident response. Native SwiftUI, biometric-gated mutations, capability-aware. Coming soon to the App Store.
  • Anthropic MCP Directory listing for the Butterfly remote MCP server. So AI assistants can query backups, run readiness scores, and preview restores on your behalf.
  • More providers. Today: Okta, Okta Workflows, Auth0. More on the roadmap. We do not list providers publicly until they are real.

How to try it

Free tier: one Okta connection, 7-day retention, no credit card. Install from the Okta Integration Network, or start at butterflysecurity.org.

Keep Reading

Identity Is a Shared Responsibility (And Most Teams Don't Realize It)

Your identity provider guarantees uptime, not your configurations. Understanding the shared responsibility model for Okta and Auth0 is the first step to real disaster recovery.