BorisG.94369 (Customer) asked a question.
I'm troubleshooting SAML integration with Okta as an identity provider.
I'm trying to prevent Okta Sign-in Widget from pre-populating the username it remembers from currently logged-in user. I basically want the sign-in widget username field to always be empty when the authentication window opens. We are sending SAML "force authentication" parameter in the Okta login URL used to populate the login window.
I tried disabling "Remember user on sign-in" setting in Security > General > Organization Security (based on https://support.okta.com/help/s/article/how-to-stop-okta-sign-in-widget-from-remembering-username-field?language=en_US) but the username was still populated. I also have "Persist session cookies across browser sessions" disabled (based on https://support.okta.com/help/s/article/Closing-the-browser-and-reopening-prompts-me-to-log-in-again?language=en_US). No effect here either.
What other options are there?
Hi @BorisG.94369 (Customer) , Thank you for reaching out to the Okta Community!
Custom Okta Sign-in Widget configuration would be the purview of our Okta Developer colleagues. My advice would be to reach out via devforum.okta.com to take advantage of their expertise.
While we'll do our best to answer all of your questions here, this medium is more inclined towards Okta core products and features (non-custom/developer work).
Regards.
--
Help others in the community by liking or hitting Select as Best if this response helped you.
Collect them all. Learn a new skill and earn a new Okta Learning badge.
Just released: More Okta Community badges just added
Maybe I wasn't clear, there isn't any custom sign-in widget configuration. The login page is the built-in Okta login page without any changes (which I'm assuming is hosting the sign-in widget - but I can use a different description of the situation if it's more appropriate).
If you are using the Okta hosted one, can you run tests via incognito or a different browser? Also, can you check if the browser "auto-fill" / "Remember search and form history" is not enabled?
Beyond that, the only thing I can think of is perhaps the login_hint.
https://support.okta.com/help/s/question/0D54z0000AFqy8cCQB/disable-loginhint-in-saml-application?language=en_US
https://support.okta.com/help/s/article/login-hint-parameter-and-sign-in-widget?language=en_US
Regards.
--
Help others in the community by liking or hitting Select as Best if this response helped you.
Collect them all. Learn a new skill and earn a new Okta Learning badge.
Just released: More Okta Community badges just added
Thanks for the suggestions. Unfortunately, browser customization/configuration is not possible in this case.
My understanding of LoginHint is that it is sent from Okta to a 3rd party IdP and so probably won't apply in this case? (We're currently not using LoginHint in the URL we use to open Okta login page).
May be could you check if this option is enabled.
https://support.okta.com/help/s/article/How-can-I-remove-the-Remember-Me-checkbox-from-my-Okta-login-page?language=en_US
Sometimes the browser also tries to auto fill values so you may have to check that as well (change browser or try in private)