Step 4 — Create New Password Authentication Policy in Okta

When a user logs in to ExtremeCloud‌ IQ using SSO with Okta, the user must follow the rules defined in the Okta Authentication Policy. You can assign your new SAML application to use one of Okta‘s out-of-the box Authentication policies. By default, your SAML application uses the Any Two Factors Authentication Policy, which has been successfully tested with ExtremeCloud‌ IQ.

Use this task to create and assign a new Password-only Authentication Policy, which can be used with ExtremeCloud‌ IQ if you do not need Okta to enforce Multi-Factor Authentication.

  1. From the left navigation bar, navigate to Security > Authentication Policies, and then select Add a policy.
  2. Enter a Name, and then select Save.
    You will be directed to the Rules tab of your new Authentication Policy, where we will modify the rules associated with the existing Catch-all Rule policy.
  3. For the Catch-all Rule, select Actions, and then select Edit.
  4. Scroll down to the Then section, for AND User must authenticate with, select Password from the list.
  5. For Prompt for authentication, select Every time user signs in to resource.
  6. Select Save.
  7. Select the Applications tab, and then select Add app.
  8. Find the SAML Application you created in Step 2, and then select Add for the associated row.
  9. Select Done to close the app assignment dialog box.
9038990-00 Rev AB