User17374336675611123236 (Customer) asked a question.
Managing temporary users(without having an account in identity server) with One Time Password
We aim to create an application that includes different types of ‘Permanent’ users and a type of ‘Temporary’ users.
Permanent users will have user accounts in the identity server and can access various resources (API endpoints) on the resource server based on their assigned roles. Temporary users, on the other hand, will not have accounts in the identity server but can temporarily access certain special resources on the resource server after being verified through an OTP sent to their phone number or email address.
Is this possible to manage such temporary users with Octa service?
I'm not sure it is possible to prompt for an OTP for someone that does not have an account in Okta. Perhaps integrating email challenge with Magic Links might be able to do something close but again I'm not sure how that would work for someone that don't have an Okta account.
https://developer.okta.com/docs/guides/authenticators-okta-email/aspnet/main/#set-up-magic-links
https://www.okta.com/blog/2020/09/magic-links/#:~:text=Magic%20links%20are%20a%20form,but%20without%20the%20actual%20password.
If you don't get any other responses you might reach our to your Okta Customer Server Rep and ask for a meeting with Okta Professional Services to see what options they might be able to come up with to address your use case.
Thank you.
Hello @User17374336675611123236 (Customer) , thank you for contacting Okta Community.
What you propose is an interesting case study. The issue arises from the fact that Okta has only one type of user: an existing user. The user exists in various states (staged, pending user action state, active, password reset mode, suspended, deactivated) from the moment it is created until the moment an administrator deletes it. In other words, Okta does not currently support temporary users.
As @MatthewH.10249 (State of Iowa) mentioned, you would need a creative solution, so the best option is to schedule a meeting with the Okta Professional Services team. They specialize in custom deployments and expert, personalized assistance. You can read more about them and, if you decide, get in touch using the page below:
Professional Services
Additionally, if you have a paid account, you can suggest new features on the Okta Community page by going to the Community→ Ideas tab. Features suggested in our community are reviewed and can be voted on and commented on by other members. High popularity will increase the likelihood of it being picked up by the Product Team and implemented.
You can find more details here.
Regards.
—
Join the discussion for Ask Me Anything on February 4, 2025: Advancements in Okta’s On-Prem Directory Integrations
Thank you.