Community
Pricing

Okta.com
Sign in to Okta

Guides
Concepts
Reference
Languages & SDKs

Sign Up

Home
Guides
- Guides overview
- Basics
  - Quickstart: Signing in your first user
  - Create an API token
  - Enable CORS
  - Find your Okta domain
    - Overview
    - Find your Okta domain
  - Find your application credentials
    - Overview
    - Find your app integration credentials
  - Share Application Key Credentials for IdPs across Apps
  - Set up SAML Tracer
    - Overview
  - Upgrade SAML Apps to SHA256
  - Sign the Okta certificate with your own CA
  - Set up self-service registration
- Sign Users In
  - Add an external Identity Provider
  - Add multifactor authentication
  - Mobile App
    - Unlock a mobile app with biometrics
    - Build a custom sign-in UI in your mobile app
    - Sign users in to your mobile app
    - Share a sign-in session with native mobile apps
  - Sign users in to your single-page application
  - Sign users in to your web application
  - Sign users out
  - Configure Okta sign-on and App sign-on policies
- Authorization
  - Implement the Authorization Code Flow
  - Implement the Authorization Code Flow with PKCE
  - Create an Authorization Server
  - Implement the Client Credentials Flow
  - Implement the Implicit Flow
  - Request user consent
  - Implement the Resource Owner Password Flow
  - Tokens
    - Build a JWT for Client Authentication
    - Customize tokens returned from Okta with custom claims
    - Customize tokens returned from Okta with a Groups claim
    - Customize tokens returned from Okta with a dynamic allow list
    - Customize tokens returned from Okta with a static allow list
    - Refresh access tokens
    - Revoke Tokens
    - Work with Okta session cookies
      - Overview
    - Validate Access Tokens
      - Overview
    - Validate ID Tokens
      - Overview
- Brand and Customize
  - Customize the Okta-hosted error pages
  - Customize the Okta URL domain
  - Style the Widget
  - Customize SMS messages
  - Customize email notifications and email domains
- OIN Partner Integrations
  - Build a SCIM provisioning integration
  - OIDC and the OIN: A Developer Primer
  - Build a Single Sign-On (SSO) integration
  - Submit an app integration
- API Security
  - Implement OAuth for Okta
  - Implement OAuth for Okta with a Service App
  - Protect your API endpoints
  - Configure an access policy
- Deploy to Production
  - Deployment checklist
    - Pre-launch checklist
  - Deploy your app
    - Overview
    - Java
    - JavaScript
    - Mobile
  - Migrate to Okta
- Hooks
  - Common Hook Set-up Steps
  - Event Hook
  - Password Import Inline Hook
  - Registration Inline Hook
Concepts
- Concepts overview
- API Access Management
- Authentication
- Authorization Servers
- Event Hooks
- Events API Migration
- External Identity Providers
- Feature Lifecycle Management
- How Okta works
- Inline Hooks
- Key Rotation
- OAuth 2.0 and Open ID Connect Overview
- Okta Data Model
- Okta Organizations
- Okta-Hosted Flows
- Hosted Vs. Embedded
- Policies
- Social Login Overview
- Understanding SAML
  - SAML Overview
  - SAML FAQ
- Understanding SCIM
  - SCIM Overview
  - SCIM FAQ
Reference
- Reference Overview
- API Overview
- Sign in Your Users
  - OpenID Connect & OAuth 2.0 API
  - Authentication
- Manage Okta Objects
  - Administrator Roles
  - Apps
  - Authorization Servers
  - Dynamic Client Registration
  - Event Hooks
  - Event Types
  - Factors
  - Features
  - Groups
  - Identity Providers
  - Inline Hooks
  - Linked Objects
  - Mappings
  - MyAccount
  - Org
  - Policy
  - Schemas
  - Sessions
  - System Log
  - Templates
  - ThreatInsight
  - Trusted Origins
  - User Types
  - Users
  - Zones
- Rate Limits
- Error Codes
- Import Hook
- Okta Expression Language
- Password Hook
- Postman Collections
- Registration Hook
- Release Life Cycle
- SAML Hook
- SCIM Protocol
- Social IdP Settings
- Token Hook
- WebFinger
- Advanced Server Access
Languages & SDKs
- Languages & SDKs overview
- Mobile
  - Android
  - iOS
  - React Native
- Front End
- Back End
  - .Net
  - Go
  - Java
  - Node.js
  - PHP
  - Python
  - REST
Release Notes
- Overview
- 2021
- 2020
- 2019
- 2018
- 2017
- 2016

Configure Okta Sign-On and App Sign-On Policies

Configure Okta Sign-On and App Sign-On Policies

On This Page