Control access to the Okta End-User Dashboard

Okta lets you control which users can access your org's Okta End-User Dashboard.

New organizations get access to the dashboard by default. Admins of existing orgs can use this guide to remove access for users who don’t use the dashboard.

Admin roles for this task

You must have super admin permissions to change access to the Okta End-User Dashboard.
If you choose to deny access to the Okta End-User Dashboard, affected users keep their existing access level until the next time they sign in.

Disable the Okta End-User Dashboard for specific groups

The rules that you configure to protect access to the Okta Browser Plugin must be the same strength or weaker than those protecting the Okta End-User Dashboard. See Control access to the Okta Browser Plugin.

Ensure that admins aren't included in any group that you disable dashboard access for. If this isn't possible, create a higher-priority rule for these admins so they keep access to their dashboard.

In the Admin Console, go to ApplicationsApplications and filter by Active.
Select the Okta Dashboard app.
In the Sign On Policy tab, click Add Rule.
Under Who does this rule apply to?, click the following groups and users and select the specific groups that this rule applies to.
In the Access section at the bottom of the page, select Denied from the dropdown menu.

You can disable access to the Okta End-User Dashboard for groups and specific user types. For example, you can disable access to the dashboard for groups who only access a custom-built app, or only access apps through your intranet. A common use case for editing the Okta Dashboard policy is to disable access for users in your org who use another dashboard or app.

Control access to the Okta End-User Dashboard

Admin roles for this task

Disable the Okta End-User Dashboard for specific groups

Related topics