Okta Integration Guide (Okta Classic)

This guide enumerates some items you should know before configuring Okta as an SSO provider with Beyond Identity.

• As soon as you configure routing rules in Okta (with or without Beyond Identity as IdP) user login experience will change. Users will be asked for a login ID/Username first, and then based on routing rules, users will be prompted for a password or go through additional IdP options like Beyond Identity.
• Okta recommends this as the best practice to avoid password spraying attacks. Your tenant may be already set up to ask for a username first and then ask for a password today, and your users are experienced with this behavior. If your tenant is not set up, please inform your users of a change in login experience before proceeding.