Whether you are just getting started with Okta or you are curious about a new feature, our End User FAQ offers insights into everything from setting up and using your dashboard to explaining how Okta’s browser plugin works and more. Find answers to your Frequently Asked Questions about Okta below.

General Questions

What is Okta?

Okta is a cloud-based Identity and Access Management (IAM) platform that ensures the right people have the right level of access to the right technology. Okta allows users to securely sign in to multiple applications using Single Sign-On (SSO) and Multi-Factor Authentication (MFA).

Which web browsers does Okta support?

Okta supports the following web browsers: Chrome, Firefox, Microsoft Edge, Internet Explorer 11, and Safari. Refer to Supported Operating Systems and Browsers.

What happens if Okta goes down?

Okta utilizes an “Always On” architecture. You can navigate to Okta Status to view our high-reliability metrics and learn more about service reliability. During an outage, you would not be able to sign in to the Okta organization or access applications via SSO. However, some applications might still be accessible through direct links.

Who do I contact in case of Okta emergencies?

For Okta emergencies, contact your company's help desk for assistance.

Passwords and Credentials

How do I find my Okta username and password?

If you do not know your username, contact your company's help desk. The help desk configures all organization Okta usernames. If you have forgotten your password, use the Forgot password link at the bottom of the sign-in page to generate a new password.

How do I reset my forgotten password?

If you cannot remember your Okta password and need to reset it, select the Need help signing in? or Forgot password? link on the Okta sign-in page (depending on how your admin has configured the page). This will allow you to reset your password via email. If these options are not available on your sign-in page, contact your company's help desk for assistance.

Can my administrator view my login information?

Your administrators can view your username, but do not have access to your password. No personnel have access or visibility into password data.

Is my Okta password secure?

Okta provides rigorous security measures and controls to protect information, and these controls are audited and attested to in our SOC 2 report. Okta encrypts all passwords using 256-bit Advanced Encryption Standard (AES) encryption. For more information, refer to Password Storage Encryption In Okta.

How do I make a safe password?

Okta supports strong passwords through the use of password complexity rules. Your company's help desk determines the rules for your company's passwords.

Where and how does Okta store my username and password?

Just as we use strong encryption to secure your data at Okta, we also use strong (256-bit AES) encryption for your username and password credentials. This information is stored and maintained by Okta. For more information, refer to Password Storage Encryption In Okta.

Why do I need to enter credentials for some applications but not others?

With Okta, you can access your applications through a single, unified dashboard. Access to these applications is delivered through SSO technology via either Security Assertion Markup Language (SAML) or Okta’s own Secure Web Authentication (SWA) technology.

For applications that use SWA, you are responsible for maintaining your own password. If an SWA app requires a password change, you can update it within the Okta dashboard. For applications that use SAML, Okta automatically passes on access through a token, eliminating the need for manual password changes.

How do I change my password for an app?

To change your password for a specific application, hover your mouse over the application icon. Select the gear icon in the upper-right corner of the application to access settings. Provide your current username and password to verify your identity. Once verified, you can update the password.

If the application does not permit updating the username and password, contact your help desk to request a reset.

Multi-Factor Authentication

What is Okta Verify?

Okta Verify is a secure authentication application available on both mobile and desktop platforms. The mobile application allows users to approve push notifications, generate one-time passcodes, and authenticate logins securely.

How does Multi-Factor Authentication work?

Your user credentials are encrypted using both an industry-­standard AES encryption and a randomly generated symmetric key. This key store, containing your symmetric encryption keys, is then encrypted with a primary key that is stored only in memory and is accessible only to the Okta app.

At startup, the app is provided a primary passphrase allowing it to access, decrypt, and store the primary key in memory. A technical administrator at your company inputs the primary passphrase. Only a select number of administrators know this primary passphrase. As a result, attackers can decrypt the data only if they have the primary key, the private key, and the user's app context.

How do I set up Okta Verify?

Follow these steps to set up Okta Verify:

1. Download Okta Verify on your mobile device from the Apple App Store or the Google Play Store.
2. Log in to your Okta organization on a computer.
3. If multi-factor authentication is required in your company, you will be prompted to select Setup and choose the type of mobile device you are using (iPhone or Android).
4. Open Okta Verify on the mobile device and use the device camera to scan the QR code displayed on the computer screen.
5. Note the six numbers that appear on the mobile device in the Okta Verify application.
6. Select Next on the computer.
7. Enter the code from the device and select Verify.
8. If your organization has enabled Okta Verify with Push, you can also send a push notification to your mobile device by selecting the Push to Device button.

How do I scan a new Okta QR code?

You will need to scan a new QR code if you change mobile devices. To change devices:

1. Download Okta Verify onto the new device.
2. Log in to the Okta organization on a computer.
3. Select the username in the top menu and choose Settings.

4. Select Edit Profile.
5. Enter the password and complete the second authentication factor, if enabled.
6. Navigate to the Extra Verification section.
7. Select Reset next to the Okta Verify mobile application.

• • A warning message will appear to notify you that you will be reconfiguring your multi-factor authentication. Select Yes to proceed.

8. Select the new mobile device operating system.
9. Select Next to display the new QR code.
10. Open Okta Verify on the new device and use the device camera to scan the QR code.
11. Note the six numbers that appear on the mobile device in the Okta Verify application.
12. Select Next on the computer.
13. Enter the code from the device and select Verify.

How do I set up or reset my Multi-Factor Authentication?

Follow these steps to reset MFA:

1. Log in to your Okta organization on a computer or mobile device.
2. Select the username in the top menu and choose Settings.

3. Navigate to the Extra Verification section.
4. Select Setup or Reset next to the MFA factor that requires an update.

5. Enter the required information and save the changes.

Refer to Setting Up and Authenticating with Multi-factor Authentication (MFA).

Why does Okta prompt me for extra verification?

Your organization might require MFA to confirm your identity. This additional step increases account security. Examples include Okta Verify push notifications, one-time passcodes, SMS text messages, or authenticator application codes.

What do I do if I lose access to my Multi-Factor Authentication device?

Contact your company's help desk to reset your MFA factors to allow enrolling a new device.

Okta Dashboard

What is the Okta Dashboard?

The Okta Dashboard displays all the applications you can access from Okta. Select an application icon to launch the application using SSO without entering another password.

How do I create a new tab in the Okta Dashboard to organize my applications?

Follow these steps to create a new tab:

1. Select the + sign next to the last tab.
2. Enter a new tab name.
3. Select Save to create the tab.

How many tabs can I have?

You can have up to five tabs.

How do I delete a tab?

Follow these steps to delete a tab:

1. Move all applications out of the tab and into another tab.
2. Select the Delete Tab option that appears after all applications have been removed from the tab.

How do I change the order in which my applications appear?

Follow these steps to change the application order:

1. Select and hold an application icon.
2. Drag and drop the application to the desired location.

How do I move an application from one tab to another?

Follow these steps to move an application to another tab:

1. Select and hold the application icon.
2. Drag and drop the application to the new tab.

How do I add an application?

If your organization allows you to add your own apps, an Add Apps button will appear in the Dashboard menu on the left side of the screen.

1. Select Add Apps.
2. Search for the required application.
3. Select Add on the right side of the application to place it on the dashboard.

How do I request an application to be added?

You can submit application requests to your company's help desk. If the application does not exist in the Okta App Catalog, you can create a bookmark for it in your Dashboard and request that the app be added:

1. Select the Add an App button.
2. When the app is not found, choose Add a bookmark instead.
3. Enter the login URL.
4. Select the Ask Okta IT to add this app checkbox.

How do I remove an application?

Follow these steps to remove an application that you have installed:

1. Hover over the application.
2. Select the gear icon.
3. Select the delete option in the application settings screen.

Apps issued by your help desk cannot be removed, but you can create a new tab to store unused or unwanted applications to hide them from the primary view.

What is an application bookmark?

A bookmark saves the login URL of an application not currently available in the Okta application catalog. When a user creates a new bookmark, the Okta Dashboard displays an application icon for that login URL. Bookmarks only store the URL, not the username or password.

How do I add an application bookmark?

Follow these steps to add an application bookmark:

1. Select the Add Apps button in the menu on the left side of the dashboard.
2. Search for the application.
3. Select the option to create a bookmark if the search yields no results.
4. Enter the application URL and the desired bookmark name.
5. Select Add to create the bookmark.
6. Select Home at the top of the dashboard to view the new bookmark.

If the Add Apps button does not appear, your organization restricts creating bookmarks.

How do I search for an application if I cannot remember which tab I put it on?

Follow these steps to locate an application using search:

1. Select the Search your apps search bar at the top of the dashboard.
2. Type the name of the application.
3. Select the application to open it.

Setup and Configuration

How long does the Okta activation email remain valid?

By default, Okta activation emails remain valid for one day. However, administrators can customize this value to expire in as little as 8 hours.

Where do I sign in to access Okta?

Navigate to your company's custom Okta URL in any web browser. The custom Okta URL typically utilizes the format <company>.okta.com. For example, a company named ABC utilizes the URL <abc>.okta.com.

How do I learn to use Okta?

You can watch short videos at Getting Started with Okta Workforce Identity Cloud or refer to the Product Documentation at Get Started with Okta. You can also access the available Okta Learning catalog.

Why do I need to set up a secondary email?

Secondary email is useful in case you forget your Okta password. If your help desk administrator allows you to receive forgotten password assistance, you can request a password help link be sent to your email address. However, if you access your company email through Okta, you would be unable to access the reset email. If you have provided Okta with a secondary email address, Okta sends the forgotten password email to the secondary email address as well, allowing you to access the link and reset your password.

How do I change my Okta password?

Follow these steps to change the Okta password:

1. Log in to the Okta organization on a computer or mobile device.
2. Select the username in the top menu and choose Settings.

3. Navigate to the Change Password section and select Edit.
4. Enter the current password, the new password, and repeat the new password.
5. Select Change Password.

How can I change my forgotten password question?

Follow these steps to change the forgotten password question:

1. Log in to the Okta organization on a computer or mobile device.
2. Select the username in the top menu and choose Settings.

3. Navigate to the Forgotten Password Question section and select Edit.
4. Choose a new question, enter the answer, and select Save.

How can I change my secondary email address information?

Follow these steps to change the secondary email address:

1. Log in to the Okta organization on a computer or mobile device.
2. Select the username in the top menu and choose Settings.

3. Navigate to the Personal information section and select Edit.
4. Enter the new secondary email address and select Save.

Troubleshooting

What do I do if my account is locked?

Follow these steps to resolve a locked account:

1. Navigate to the Okta login screen.
2. Select Need help signing in? or Unlock Account.
3. Follow the prompts to unlock the account.

If these options are not available on the sign-on screen, contact your company's help desk for assistance.

What do I do if I am not receiving Multi-Factor Authentication push notifications?

Follow these troubleshooting steps for missing push notifications:

• Verify that your mobile device has an active internet connection.
• Open the Okta Verify application to check for pending requests.
• Attempt using a manual verification code.
• Contact your company's help desk if the problem persists.

Why does my Okta session expire while applications remain open?

Okta sessions expire after a defined session lifetime or inactivity period that the organization configures. Okta does not log you out of your applications even though you may be logged out of your Okta session.

Okta Plugin

What is a plugin?

Plugins are applications that can be easily installed and used as part of a web browser.

Do I need to use a plugin?

No, you have to use the Okta plugin only if your administrator has configured applications to use Secure Web Authentication (SWA). The Okta plugin is not required for SAML applications.

Is it safe to install the Okta plugin?

Installing the Okta plugin remains safe and secure.