<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z00008FWHbDCAXOkta Classic EngineSingle Sign-OnAnswered2025-10-11T09:01:02.000Z2022-10-19T20:53:12.000Z2022-11-09T16:41:45.000Z

DinoS.32363 (Customer) asked a question.

October 19, 2022 at 8:53 PM
Can you clone an app sign-on policy?

The following shows how to create an app sign-in policy.

https://help.okta.com/en-us/Content/Topics/Security/policies/configure-app-signon-policies.htm

 

Based on this it seems that I'd have to add a policy to each app individually. Very laborious...

 

I have a sign-on policy that I need to add to 40+ apps. Is there any other easier way to do this, other than use the web-gui which seems that I'd have to create this policy for each of my 40+ apps individually? Is there a cloning or cli or api option to do this?

 

I see that it's possible to clone an authentication policy. Hopefully the same is true for sign-on policies.

 

Thanks

  • 6 answers
  • 489 views

  • flz9z (flz9z)

    Hi Dino Sims ,

    It's possible to add a sign-on policy to multiple applications .

    •  Go to Security > Authentication Policies (Previously called as app-sign on policy)
    • Select the policy you want to add
    • Click on Applications > Add App

    If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

    Expand Post

  • User16594883467582706479 (Customer Support Online Experience)

    Hi, @DinoS.32363 (Customer)​ 

     

    Thank you @flz9z (flz9z)​  for providing insight to the problem. I just want to add that this only works on Okta Identity Engine, not on the Classic Engine.

     

    Thank you for reaching out to our Community and have a great day!

    _____________________________________________________________________________

    The October issue of the Okta Community is here and packed with tips on certification, how to earn badges, and new releases. Let us help you stay connected.

    _____________________________________________________________________________

    If my answer helped, remember to select it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

    _____________________________________________________________________________

     

    Expand Post

  • DinoS.32363 (Customer)

    @User16594883467582706479 (Customer Support Online Experience)​, or anyone else.

     

    I'm new to Okta. Can you tell me how I can tell if I have the Identity Engine or Classic Engine? Feel free to look at my company account if that will help.

     

    Thanks,

    Dino

    Expand Post

    • flz9z (flz9z)

      Hi Dino Sims ,

      Check the footer on any page of the Admin Console. The version number is appended with E for Identity Engine orgs and C for Classic Engine orgs .

      Hope this helps .

  • DinoS.32363 (Customer)

    @User16594883467582706479 (Customer Support Online Experience)​ , or anyone else,

     

    More specifically. Can I create an App Sign On Rule for one app, and then share that same app sign on rule with other apps without have to retype it from scratch for each app?

     

    Expand Post
This question is closed.
Loading
Can you clone an app sign-on policy?