<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Okta Sharepoint Integration with SSO Across Realms
Sep 9, 2024
Okta Classic Engine
Okta Identity Engine
Single Sign-On
Overview

When moving between apps assigned to different Sharepoint Realms, the user is requested to re-authenticate. The realm establishes the trust relationship between Okta and the SharePoint application.

 

Applies To
  • SharePoint Application
Cause

This behavior is not exclusive to Sharepoint Realms. When an authentication policy (App Sign On Policy—ASOP) is configured, it verifies that users who try to sign in to the app meet specific conditions and enforces factor requirements based on those conditions. Please refer to Authentication policies for more details.

In the context of a Sharepoint implementation where the realms are defined as individual apps, the Okta authentication layer will persist the login session across realms as long as the authentication policies are the same.  The end user may be prompted to reauthenticate if apps use different authentication policies. 

Solution

After the authentication policies are aligned, the authentication and session persistence work seamlessly when moving between apps associated with different realms.

Recommended content

Still looking for help?
Loading
Okta Sharepoint Integration with SSO Across Realms