<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z00009e3VQPCA2Okta Classic EngineAuthenticationAnswered2024-06-07T09:00:20.000Z2023-09-08T08:01:43.000Z2023-09-20T02:58:56.000Z

lnllt (lnllt) asked a question.

September 8, 2023 at 8:01 AM
Why do I get swk back in the http://schemas.microsoft.com/claims/authnmethodsreferences claim

I'm using Identity Server 6 and Okta.

 

I have a sign on policy set up that requires 2FA.

 

I sign in using OIDC.

 

Identity Server forwards the request to Okta, and I'm then prompted for my username/password, and then Okta Verify pops up with the challenge on my phone.

 

Once I'm authenticated, I noticed back in Identity Server that I have these three claims.

 

swk

 

mfa

 

pwd

 

mfa and pwd make sense, but why is swk there?

Image is not available

https://self-issued.info/docs/draft-ietf-oauth-amr-values-03.html says swk is Proof-of-possession of a software-secured key. But I haven't set up a software secured key at all.

  • 3 answers
  • 529 views
This question is closed.
Loading
Why do I get swk back in the http://schemas.microsoft.com/claims/authnmethodsreferences claim