Test your breached credentials protection configuration

Early Access release. See Enable self-service features. Not authorized for Okta for Government Moderate.

Use Okta-generated sample credentials to test your breached credentials protection configuration.

Before you begin

Configure breached credentials protection. For testing purposes, use the default password policy settings: Expire the password after this many days is 0 and Log out user from Okta immediately.

Create a test user with a breached password

  1. In the Admin Console, go to DirectoryPeople.

  2. Click Add person.

  3. Enter test data for the profile fields.

  4. Select Activate now.

  5. Select I will set password.

  6. Enter a password that starts with OKTA-BREACH-TEST-. You may need to add more characters to satisfy your password complexity requirements.

  7. Click Save.

  8. Sign out from the Admin Console.

Sign in as the test user

  1. Go to your org's sign-in page.

  2. Enter the test credentials and breached password, and then click Sign In.

  3. Verify that the actions in your password policy are executed. If you used the defaults, you should be immediately logged out from the org and then prompted to change your password.

Related topics

Breached credentials detection

User experience with breached credentials protection