User17298560090741235901 (Customer) asked a question.
Accidentally , the admin console is unavailable for all accounts with the error:
Sign In Denied
You do not have permission to access your account at this time. If you're wondering why this is happening, please contact your administrator.
no one can login. The account is the dv account.
We use cookies to provide the best website experience and to help understand marketing efforts. We may also share data with ad partners to reach potential customers across the web. To learn more, visit our Privacy Policy. Click here for Your Privacy Choices. You may also opt out of this sharing by signaling your preference via GPC, applicable only to the browser signaling the opt-out.
More information
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
Select All
We use cookies to provide the best website experience and to help understand marketing efforts. We may also share data with ad partners to reach potential customers across the web. To learn more, visit our Privacy Policy. Click here for Your Privacy Choices. You may also opt out of this sharing by signaling your preference via GPC, applicable only to the browser signaling the opt-out.
More information
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
Select All
@Paul S. (Okta, Inc.) Hi, you replied to me yesterday by email something different to what you said above about MFA - I seems that there are a lot of accounts affected and there is no clear/consistent path to resolution other than to email community@okta.com who gives you a different answer each time - for example, you told me my credentials have been invalidated and then that I'd have to have a paid account to even put in a support ticket but you mentioned nothing about the MFA issue..? (we require credentials to log in to okta health center btw).
I'm sure I speak for everyone affected - we'll do the MFA or whatever is required, but the community just needs reliable information, access, and fair warning.
Hello, I also have the same problem, I have also emailed the community email.
Thanks for any help you can provide.
Same here.
The response was:
"Free developer/trial account credentials and policies cannot be accessed by anyone outside of the primary account administrator. Therefore, Okta is unable to assist with this request. You may, however, create a new free trial or developer account here. "
My login was the primary account administrator - but based on my understanding, under the dev preview mode, we are not.
I am huge fan of your product and been using and recommending this service to lots of projects and teams (included paid versions). From what I am hearing Okta is basically forcing me to upgrade to a paid plan otherwise I won’t be able to login. And let's consider that I want to upgrade to the paid subscriptions, how could I do that if I can't login anymore?
I have the same issue. This is a nightmare. I have been the admin on an account for years but all of a sudden I cannot login. I can't create a support case either because OKTA says I don't have case creation permissions. OKTA, this is unacceptable!!
Hello All, I am curious if anyone has been able to resolve this issue with OKTA? I too am experiencing this issue and emailed Community@okta.com several weeks ago but have yet to receive a response.
Hi folks, what we ended up doing was using the org factors API which wasn't easily discoverable, but using these we were able to activate MFA as an option on the account. Once enabled, you will be prompted in the admin app to configure your second factor.
We used the following:
POST https://{tenant}/api/v1/org/factors/google_otp/lifecycle/activate
POST https://{tenant}/api/v1/org/factors/fido_webauthn/lifecycle/activate
In order for this to work, you do need to have an API key already.
Awesome - I was pondering this solution. Thanks for the links to endpoints!
This was a life-saver, @00uj6ak4a8hTjvLoO351.5607771588671277E12 (Customer) ! I didn't need to try to enroll a user via API. Like Robert said, I just turned on Google OTP and then attempted to login. The OKTA interface prompted me to setup Google OTP and I was finally in. For my other account that was locked out, it took a little more work but I'm finally good to go.
This has been an enormous headache!
Here's a sample curl, big ups to @00uj6ak4a8hTjvLoO351.5607771588671277E12 (Customer) 🙏
curl --location --request POST 'https://dev-123456.oktapreview.com/api/v1/org/factors/google_otp/lifecycle/activate' \
--header 'Accept-Language: en' \
--header 'Content-Type: application/json' \
--header 'Accept: application/json' \
--header 'Authorization: SSWS {API_TOKEN}' \
--data ''
Hello @00uj6ak4a8hTjvLoO351.5607771588671277E12 (Customer) , thanks for this information. Do you know if this turns on MFA for all users, or just for Admins?
Thanks!,
Shawn