ZeroTek

Part of the <a href="https://intercom.help/zerotek/en/articles/14173671-okta-fastpass-setup-guide" rel="nofollow noopener noreferrer" target="_blank">Okta FastPass Setup Guide</a>.

This procedure prepares your global session policy for Okta FastPass by doing two things:

Removing the global password requirement from the existing global session policy

Transferring responsibility for defining and enforcing authentication criteria to each of your individual authentication policies

- Removing the global password requirement from the existing global session policy
- Transferring responsibility for defining and enforcing authentication criteria to each of your individual authentication policies

This is the first step in setting up Okta FastPass. Do not skip or reorder it.

This procedure assumes the Okta org (sandbox or production) was configured according to ZeroTek's <a href="https://intercom.help/zerotek/en/articles/14435934-new-org-setup-guide" rel="nofollow noopener noreferrer" target="_blank">New Org Setup guide</a>. As part of that setup, a global session policy was created for a group containing all staff/personnel that requires MFA for all human users.

Identify the correct global session policy

In ZeroTek, select the target org in the Organizations menu, then navigate to Policies &gt; Global Session Policy tab.

Click the name of the global session policy configured for the all staff group.

Confirm the policy meets both of the following conditions before proceeding:

- It is prioritized below the policies for Deep Link and Service and Shared Admin Accounts.
- It is assigned to the group containing the users you want to configure for Okta FastPass. If you followed the New Org Setup guide, this might be called "Policy - All Staff" and will contain all Okta accounts tied to human users. This policy may have one or two "MFA Required" rules (one for on-site logins, one for off-site logins) depending on the needs of the client.

1. In ZeroTek, select the target org in the Organizations menu, then navigate to Policies &gt; Global Session Policy tab.
2. Click the name of the global session policy configured for the all staff group.
3. Confirm the policy meets both of the following conditions before proceeding:
 - It is prioritized below the policies for Deep Link and Service and Shared Admin Accounts.
 - It is assigned to the group containing the users you want to configure for Okta FastPass. If you followed the New Org Setup guide, this might be called "Policy - All Staff" and will contain all Okta accounts tied to human users. This policy may have one or two "MFA Required" rules (one for on-site logins, one for off-site logins) depending on the needs of the client.

Modify the existing policy rules to support Okta FastPass

If there is an On Site - MFA Required rule, click the Edit icon and change the following settings:

- Establish the user session with — select Any factor used to meet the Authentication Policy requirements
- Multifactor authentication (MFA) is — select Not required

If there is an Off-Site - MFA Required rule, click the Edit icon and make the same changes:

1. If there is an On Site - MFA Required rule, click the Edit icon and change the following settings:
 - Establish the user session with — select Any factor used to meet the Authentication Policy requirements
 - Multifactor authentication (MFA) is — select Not required
 Click Save.
2. If there is an Off-Site - MFA Required rule, click the Edit icon and make the same changes:
 - Establish the user session with — select Any factor used to meet the Authentication Policy requirements
 - Multifactor authentication (MFA) is — select Not required
 Click Save.

Now that the global session policy is configured to support Okta FastPass for human user accounts, you are ready to <a href="https://intercom.help/zerotek/en/articles/14845728-configure-the-global-session-policy-for-okta-fastpass#" rel="nofollow noopener noreferrer" target="_blank">Enable Okta FastPass for sign-in</a>.

Configure the global session policy for Okta FastPass

Create a custom design with text, images, and links

Missing Articles?

Contact Support

Contact Sales

Privacy & Security

Find answers and get help from Intercom Support and Community Experts

Conversations you've started through the messenger will appear here.

No conversations created by you

Try using different keywords or checking for typos.

No conversations found

Title

This site employs cookies and other technologies that we and our third party vendors use to monitor and record personal information about you and your interactions with the site (including content viewed, cursor movements, screen recordings, and chat contents) for the purposes described in our Cookie Policy. By continuing to visit our site, you agree to our {websiteTermsLink}, {privacyPolicyLink} and {cookiePolicyLink}.

This site uses cookies and similar technologies ("cookies") as strictly necessary for site operation. We and our partners also would like to set additional cookies to enable site performance analytics, functionality, advertising and social media features. See our {cookiePolicyLink} for details. You can change your cookie preferences in our Cookie Settings.

We use cookies to make our site work and also for analytics and advertising purposes. You can enable or disable optional cookies as desired. See our {cookiePolicyLink} for more details.

Advertising cookies are set by our advertising partners to collect information about your use of the site, our communications, and other online services over time and with different browsers and devices. They use this information to show you ads online that they think will interest you and measure the ads' performance. Social media cookies are set by social media platforms to enable you to share content on those platforms, and are capable of tracking information about your activity across other online services for use as described in their privacy policies.

These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.

These cookies are necessary for the website to function and cannot be switched off in our systems.

These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site.

You have the right to opt out of the sale of your personal information. See our {cookiePolicyLink} for more details about how we use your data.

Your Privacy Choices

We use cookies to enhance your experience. You can customize your cookie preferences below. See our {cookiePolicyLink} for more details.

Cookie Settings

Empty Help Center

Uh oh. That page doesn’t exist.

Home

Search results

Disappointed

Neutral

Smiley

Thinking...

Searching through sources...

Analyzing...

Tickets submitted through the messenger or by a support agent in your conversation will appear here.

Configure the global session policy for Okta FastPass

Steps

Identify the correct global session policy

Modify the existing policy rules to support Okta FastPass