Global Session Policies

Global Session Policies supply the context necessary for the user to advance to the next authentication step once they have been identified by Okta. They also specify actions to take, such as allowing access, prompting for a challenge, and setting the time before prompting for another challenge.

Global Session Policies can require any of the factors that you set up on the Security > Global Session Policy page. After they’re configured, use the primary and secondary factor conditions in your policy rule to choose which is evaluated.

All orgs have a default Global Session Policy that applies to all users. This policy allows access with a password, IDP, or any factor allowed by the authentication policies. You can change this condition or add higher priority rules to the default policy. You can also create new policies and prioritize them over the default.