<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base

Understanding Okta Password Length Limitations

Last Updated:

Okta Classic Engine
Okta Identity Engine
Administration

Overview

Okta users often ask about the maximum length of an Okta password. This article clarifies Okta's policy regarding password length for Okta-sourced users.

Applies To

  • Okta Classic Engine
  • Okta Identity Engine (OIE)
  • Okta home/sourced users

Cause

Users may be uncertain about the maximum password length allowed in Okta and whether it can affect authentication.

Solution

For Okta home-sourced users, there is technically no upper limit set for password length. However, Okta only stores and verifies the first 72 characters of the password. Any characters beyond this limit are disregarded.


It's important to note that this policy does not extend to accounts that authenticate to Okta using credentials validated against a third-party service, such as Delegated Authentication to AD/LDAP, Social Authentication, etc. These services may have their own password length requirements or restrictions.

Recommended content

Still looking for help?
Loading
Okta Support - Understanding Okta Password Length Limitations