<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
How to Add a Behavior to a Sign-On Policy Rule
Nov 14, 2025
Administration
Okta Classic Engine
Okta Identity Engine
Overview
This article describes how to add a behavior to a sign-on policy rule.
Applies To
  • Okta Classic Engine
  • Behaviors
  • Sign-On Policy
Solution
  1. In the Admin Console, go to Security > Authentication.
  2. Select Sign On.
  3. Click Edit rule next to the rule to which the behavior should be added. 

Authentication

  1. In the And behavior is field enter the name of an existing behavior that was previously created. Start entering a behavior name. A dropdown of all matching defined behaviors appears from which the behavior should be selected.
  • If multiple behaviors are added, they are considered as "OR" conditions.
  • When added, these behaviors are evaluated along with any other items defined in the rule.

Policy Settings   

  1. Specify the allowed condition in the Then access is section. User's access cannot be denied based on behavioral conditions. This limitation helps prevent legitimate users from being locked out of their accounts. They are only denied access if Multi-Factor Authentication fails.
  2. Click Create Rule.

Related References

Recommended content

Still looking for help?
Loading
How to Add a Behavior to a Sign-On Policy Rule