This article explains why an Administrator is unable to modify authentication policies. This issue occurs when the step-up authentication prompt fails to appear during attempts to perform Protected Actions, even when step-up authentication is a configured requirement.
- Protected Actions
The step-up authentication prompt does not appear because the browser’s pop-up blocker settings are preventing the challenge window from opening. The step-up authentication challenge for Protected Actions is presented in a new pop-up window. If the browser blocks pop-ups for the Okta organization URLs, the Administrator does not receive the prompt.
To resolve this issue, configure the browser settings to allow pop-ups from the Okta organization URLs.
Access the settings of the web browser. In the pop-up blocker settings, add the Okta organization URLs to the list of allowed sites. These URLs include:
- <customerorg.okta.com>
- <customerorg-admin.okta.com>
- <customerorg.oktapreview.com>
- <customerorg-admin.oktapreview.com>
If the issue persists, please try the following:
- Clear the browser's cache and cookies.
- Disable any browser extensions that might interfere with pop-ups or authentication flows (for example, React Developer Tools).
- Update the browser to the latest version.
- Try performing the action in an incognito window/ different browser.
- If the session lifetime is set to a very short duration (for example, 1 minute), consider increasing it to 5 minutes, as this has resolved similar issues for other users.
Related References
