New login form doesn't play well with password management tools Skip to main content
https://support.okta.com/help/answers?id=9062a000000bmmkqay&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Tomasz RydzyńskiTomasz Rydzyński 

New login form doesn't play well with password management tools

The new login form looks nice, but validation prevents me from using PassFF. I use this extension to fill in the form. But I cannot submit it then. It claims the password input is empty.
The way to get it to submit is to go to that password input and type anything.
Can you please update the form, so it validates the actual content of the input and the time when I press submit button?
Adam LoweAdam Lowe (Okta, Inc.)
This is a great question many customers have had about the login page's abilty to accept credentials injected by pasword management utilities and even the functionality built into the browser to save credentials.

The Okta login page is actually intentionally built to try and prevent this functionality from working.  This is intended as a security feature.

Because these utilities are built differently and use different and sometimes new methods to detect login forms to offer to save credentials, and to inject them automatically to submit them, you may get different experiences and varying success when trying different utilities.  Ultimately, though, the security feature will minimize their effectiveness.

If you feel this should work differently or have suggestions of better ways to impliment this, I recommend putting in a feature request via the following link:
https://support.okta.com/help/ideas/ideaList.apexp

We'd have to yeild to Okta security and product managers to make this determination, but perhaps one option for a feature request would be to make this configurable by an Okta admin, so they can choose to disable or enable this functionality for their particular org.