In order to enhance platform security, Okta has deployed an additional security enhancement that changes the Admin Console session lifetime.
- Okta Identity Engine (OIE)
- Okta Classic Engine
- Admin Console
- Global Sessions
Starting on January 4, 2024, for preview orgs and January 8, 2024, for production orgs, the default setting for Admin Console session lifetime will be 12 hours, and session idle time will be 15 minutes and will require re-authentication after that. These are the recommended settings by NIST and align us to NIST AAL phase 3 level.
You can enable and adjust the settings by following the steps below:
- Go to Application > Applications > Okta Admin Console > Sign On > Okta Admin Console Session
- Select a maximum app session lifetime between 1 min and 24 hours.
- Select a maximum app session idle time between 1 min and 2 hours.
NOTE: This does not impact end users using Okta to authenticate.
Please be aware that this is a permanent security enhancement, and we recommend incorporating it into the normal processes.
If this is causing disruptions in the Org, please contact Okta Support.
For more details, refer to the following video.
