c63bc (c63bc) asked a question.
We have Azure AD federated with Okta, and all enterprise applications in Entra are currently using Okta for authentication. Application-specific policies are defined in Entra, while authentication policies are configured in Okta, which takes precedence over Entra policies.
We need to remove the authentication requirements for a particular application integrated with Entra. We’ve set up a policy in Entra to exempt the app from authentication, but Okta's authentication policy is still enforcing the requirements. The issue is that we cannot adjust the Okta settings because the application is not visible in Okta.
Is it possible to disable WS-Fed for this specific application to remove Okta from the authentication process or make the app visible to okta to so we can define a policy in okta to remove auth requirements?
Hi @c63bc (c63bc) , thank you for contacting Okta Community.
It sounds like you are attempting to stop Entra from redirecting users to Okta when they try to access an Exception App. Is this correct? If so, that is a question for Microsoft support, as Okta does not have control over that redirection. In the scenario you described, Okta only acts as the identity source, while Entra makes the redirection.
Regards.
--
Help others in the community by liking or hitting Select as Best if this response helped you.