<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7VG6SANOkta Classic EngineMulti-Factor AuthenticationAnswered2018-09-05T01:28:40.000Z2017-03-30T17:26:27.000Z2017-03-30T17:26:27.000Z

PeterL.43039 (Customer) asked a question.

Edited by varun.kavoori1.5210444522562532E12 September 5, 2018 at 1:19 AM
Enabling MFA policy: get browser sameorigin error
I have a dev app that is working correctly for email/password login. I'm attempting to enable MFA. I added a rule to the app requiring MFA but now after I enter email/password I see this error in the browser console:

 

Refused to display 'https://dev-REDACTED.oktapreview.com/login/login.htm?fromURI=%2Foauth2%2Fv1%2…horize%2Fredirect%3Fokta_key%3DREDACTED' in a frame because it set 'X-Frame-Options' to 'sameorigin'.

 

FYI my app is on the okta preview system, configured for OpenID Connect, and set as a SPA type web app.
  • 1 answer
  • 1.95K views

  • behrouz.ghorchi1.4454685458921702E12 (Okta, Inc.)

    Hi Peter,

    In order to have Okta pages show in iFrames like different apps and pages, you need to have "IFrame Embedding" enabled for your Okta Org. You can enable it by going to the Admin Panel > Settings > Customization and under IFrame Embedding section click on Edit and enable the checkbox there.

    Let us know if you have any questions.

     

    Behrouz Ghorchi

    Customer Support Engineer | Okta
    Expand Post
This question is closed.
Loading
Enabling MFA policy: get browser sameorigin error