Post-upgrade checklist

After your upgrade to Identity Engine, Okta recommends that you validate specific features. Refrain from modifying any other settings for at least one week to reduce potential conflicts.

First, validate that your org performs as expected after the upgrade is complete:

Validation type Description
General post-upgrade check Test single sign-on with at least five applications

Test the login flows with test users to validate sign-in experience

Validate that MFA authentication works as expected (such as Email and Phone)

Validate your enabled authenticators at Security > Authenticators

Check global session policy settings

Check authentication policies for the Okta End-User Dashboard and Okta Admin Console

Verify Device Trust configurations under device integrations


Next, refer to this list and validate each action after a week has elapsed post-upgrade:

Validation type Description
One-week validation check

Changing global session policies. For custom-coded authentication, see Developer Docs for Identity Engine.

Changing authentication policies

Adding or removing new authenticators

Modifying or adding new authenticator enrollment policy

Modifying password recovery options

Enabling new functionality: Okta FastPass, Device Trust v2, Profile Enrollment.