SAML step-up auth

ikaramus · January 31, 2024, 3:31pm

Hello!

I have a SAML application and basic AUTH using policies in OKTA works well. I was able to authenticate via SAML by configuring rules in OKTA App and was successfully pass flow with MFA and just password.

I need to have a way for step up auth via SAML by using requiredAuthContext. I see that this can be achieved using OIDC and acr_values, but is there an ability to realise this by passing requiredAuthContext in request to IdP?

Also I saw a comment that on the moment year 2017 there were no option to understand in SAML response about method that was used for Auth (was it password or MFA). Was that realised after that moment or maybe there are some plans to extend functionality with SAML integrations?

Thanks in advance.

andrew1 · February 1, 2024, 12:39pm

Thank you for reaching out here on the Okta Developer Forum. We noticed that your question is more closely related to SAML. To ensure you receive the most accurate and timely assistance, we recommend reposting your query on Okta’s Community at: Okta Help Center (Lightning)

Okta’s teams on the Community are better equipped to provide the comprehensive support and guidance you need as they have the specialised knowledge and expertise in SAML.

We appreciate your understanding and are committed to ensuring you receive the best possible support. If you have any other questions or issues related to Okta’s developer tools and API’s, feel free to post them here, and we’ll be happy to assist!

Post		Replies	Views
Step up authentication for certain scopes requested Questions	1	2964	February 12, 2024
Guidance for SAML vs OIDC SAML	5	6781	March 11, 2019
Include inside SAML assertions whether a user has gone through mfa SAML	2	7225	August 8, 2017
Single application can support both SPA and SAML? SAML saml	5	7793	January 25, 2024
Obtaining a sessionToken for step-up authentication via sdk Questions	6	5243	January 24, 2024

SAML step-up auth

Related topics