<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D51Y00006CHSaRSAXOkta Classic EngineSingle Sign-OnAnswered2026-04-01T09:00:20.000Z2019-04-25T18:58:58.000Z2019-05-02T04:47:51.000Z

pd6d0 (pd6d0) asked a question.

April 25, 2019 at 6:58 PM
Why are users able to sign in using part of their username?

One of my QA colleagues brought to my attention that a user can log into our product (okta authenticated) using part of their username.

 

For example: If the username was 'testuser@test.com', they were able to login as 'testuser' without the '@test.com' domain.

 

My questions are:

  1. Is this expected behavior?
  2. Is this behavior something that can be turned off?
  3. If there were more than one username which started with 'testuser', my assumption is that it would force a match on the whole username. Is that true?
  • 1 answer
  • 1.8K views

  • t529b (t529b)

    This is expected behavior as long as the username prefix (the string before the '@') is unique within your Okta org. If more than one account has the same username prefix and any of those users attempt to log in with only the username prefix, the login attempt will simply fail.

     

    Selected as Best

  • t529b (t529b)

    This is expected behavior as long as the username prefix (the string before the '@') is unique within your Okta org. If more than one account has the same username prefix and any of those users attempt to log in with only the username prefix, the login attempt will simply fail.

     

    Selected as Best
This question is closed.
Loading
Why are users able to sign in using part of their username?