The goal of this knowledge article is to detail how to set up an Authentication Policy.

• Okta Identity Engine (OIE)
• Authentication Policy
• Multi-Factor Authentication (MFA)

Authentication policies share some conditions with global session policies, but serve different purposes. Users who gain access to Okta through the global session policy do not automatically have access to their apps. Admins can create a unique policy for each app in the org or create a few policies and share them across multiple apps. Admins can also use Okta preset policies for apps with standard sign-on requirements. If deciding to change an application’s sign-on requirements later, modify the policy or switch to a different one.

1. Log in to the Okta Admin Console.
2. Navigate to Security > Authentication Policies > Add a policy.
3. Give it a name and description.
4. By default, it comes with a Catch-all Rule.
5. Click on the Add rule and give it a name.
6. Complete the other options based on the use case and click Save.
7. Next, click on the Applications tab > Add app to assign one or multiple applications to this authentication policy.

NOTE: To verify whether the policy is working as expected, the Access Testing Tool can be used. 
 

Related References

• Authentication Policies
• Global Session Policies
• Access Testing Tool