Create a Substitute for the Group Everyone
May 26, 2025
Lifecycle Management
Okta Classic Engine
Okta Identity Engine
Overview
Okta does not recommend the use of the group Everyone for assigning applications, group rules, etc.
The group Everyone functions very differently in our internal database compared to other admin-created groups from the organization.
This article details how to create an alternative group similar to the Everyone group using Group Rules.
Applies To
- Group Rules
- Everyone Group
Solution
Please follow the steps below:
- Create a new group that will be used to mimic the group, Everyone.
- Go to Directory > Groups.
- Click on Rules > Add Rule.
- Follow the next screenshot and complete the configuration. Normally, the only common attribute would be the domain (if users are sourced from AD, LDAP, etc.). In this example, a condition will be set to match a specific domain.
An alternative to the attribute rule configuration would be for the rule to fire off the existing "Everyone" group membership, as indicated in the screenshot below:
- Change the rule's status from Inactive to Active. Every user with an attribute that contains the domain will be assigned to this group automatically. If an organization uses more than one domain, add another rule with the new domain, and the same template will work.
