<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Requirements for a Valid Password Reset Security Question Answer
Mar 21, 2025
Okta Classic Engine
Okta Identity Engine
Administration
Overview
This article provides a guideline for the requirements of a security question answer needed for password recovery.
Applies To
  • Password Reset
  • Security Question and Answer
  • Okta Classic Engine
Solution

The following guideline applies to the security question used for recovery:

  • The answer to the security question must be at least 4 characters long. A higher minimum length requirement can be set by adjusting the appropriate password policy's Answer Complexity value. To do this, from Okta Admin Console, navigate to Security > Authentication > Password.
  • The answer to the security question cannot be the user's password or username.
  • The answer to the security question cannot contain part of the question.
  • If a user has forgotten the answer to their security question and is unable to reset the password, the Admin can do that by pulling up the user's profile in the Okta admin console and clicking the Reset Password button. 
    • Admins can also use API, as instructed in the document mentioned in the Related References section.

Password policy 

Related References

Recommended content

Still looking for help?
Loading
Requirements for a Valid Password Reset Security Question Answer