Entitlements and ID vs Access Token

peaverok · February 12, 2026, 7:07pm

So I have set up entitlements for my application. When I setup a token claim in the application and use appuser.entitlements.[entitlementname] it adds them to the ID token!

Why would I want entitlements on my ID token? I want them on the access token!

When I go to the auth server and try to setup a custom claim the auth server has access to appuser but not the appuser.entitlements!

How can I add the appuser.entitlements to my access token where they seem to belong instead of on the ID token?

andrea · February 21, 2026, 12:15am

Far as I can tell and from my own testing, this doesn’t appear to be supported, at least at this time.

But you’re welcome to submit a Feature Request in our Okta Ideas portal so that our Product team can gauge interest in this functionality and potentially add it to our product roadmap

Post		Replies	Views
Okta Custom Claim as permissions OAuth/OIDC claims	3	54	May 23, 2025
Custom claims does not show up on id-token for OIDC OAuth/OIDC	3	3045	November 21, 2023
Groups claims - Id token and access token Questions	13	6775	April 6, 2020
Unable to add 'idp' claim to access token for user OAuth/OIDC	3	2876	October 10, 2022
Custom Claims not present in access_token Questions	13	6997	February 13, 2024

Entitlements and ID vs Access Token

Related topics