Configure reauthorization frequency for the Okta Admin Console
The following instructions only apply to Preview environments.
With Okta apps, super admins can create sign-on policies that modify MFA prompt frequency for admins accessing the Okta Admin Console. Super admins can adjust the number of factors required and the frequency in which admins are prompted to create detailed policies that best fit their environment.
Before you begin
You need super admin privileges to create sign-on policies. If you intend to include new admins in the sign-on policies that you create, continue to manage their admin assignments through . Super admins don't need to manually assign the Admin Console app to new users. The default policy of one factor prompt per session is used by orgs that enabled MFA for admins before configuring the Admin Console app.
Start this task
Use the following instructions as a general guide for creating a sign-on policy that requires admins to reauthorize once per day rather than once per session. These generalized instructions may differ from what's needed for your specific environment.
- In the Admin Console, go to .
- Search for and select Okta Admin Console from the list of active apps.
- In the Sign On Policy tab, click Add Rule.
-
Enter MFA once per day for the Rule Name.
- Under , select The following groups and users and add the Admin group.
- Under , select Prompt for factor.
- Select Once a day.
- Click Save.
- In the Sign On tab for the Okta Admin Console app, ensure that your new rule has the highest priority.