By default, when an Okta user closes all their browser windows, their sign-on session to Okta is terminated, and they must authenticate again the next time they access the end-user dashboard.
There are scenarios where the user's session persists beyond the life of the browser session, in which case the user is never (or very infrequently) prompted to sign in to Okta. This can cause unexpected results when using the user's last login date to make user lifecycle management decisions. For example, an automated workflow that runs daily may deactivate users who are actually using Okta based on their last login date.
- Session Management
- Lifecycle Management
This can be caused by the following browser-specific settings that result in the session being persisted when the browser is closed (other supported browsers may have similar settings):
-
Chrome: Settings > On startup > Continue where you left off.
-
Firefox: Settings > General > Startup > Open previous windows and tabs.
-
Microsoft Edge: Preferences > Start, home, and new tabs > Open tabs from the previous session.
NOTE: That session lifetime and persistence can also result in the same behavior. See the links in the Related References section for more details.
Disable the browser-specific settings noted above to ensure a user's session is terminated when all browser windows are closed.
