Entitlements and ID vs Access Token

peaverok · February 12, 2026, 7:07pm

So I have set up entitlements for my application. When I setup a token claim in the application and use appuser.entitlements.[entitlementname] it adds them to the ID token!

Why would I want entitlements on my ID token? I want them on the access token!

When I go to the auth server and try to setup a custom claim the auth server has access to appuser but not the appuser.entitlements!

How can I add the appuser.entitlements to my access token where they seem to belong instead of on the ID token?

andrea · February 21, 2026, 12:15am

Far as I can tell and from my own testing, this doesn’t appear to be supported, at least at this time.

But you’re welcome to submit a Feature Request in our Okta Ideas portal so that our Product team can gauge interest in this functionality and potentially add it to our product roadmap

system · March 23, 2026, 12:16am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Post		Replies	Views
Okta Custom Claim as permissions OAuth/OIDC claims	3	59	May 23, 2025
Unable to add 'idp' claim to access token for user OAuth/OIDC	3	2881	October 10, 2022
Custom claims does not show up on id-token for OIDC OAuth/OIDC	3	3061	November 21, 2023
Groups claims - Id token and access token Questions	13	6795	April 6, 2020
Custom Claims not present in access_token Questions	13	7017	February 13, 2024

Entitlements and ID vs Access Token

Related topics