SF SaaS Flags
Security & Compliance Automation · Risk Score 98 · Severe

Okta Complaints: What Buyers Are Actually Reporting

The identity and access management standard — reliable product, eventful security history

4 documented complaints against Okta — paraphrased from BBB filings, Trustpilot reviews, Reddit threads, and public forum posts. Newest complaints first.

Our AI scanner searches Reddit, Trustpilot, BBB, and news sources for fresh complaints from the past year, paraphrases what it finds, and adds anything new to this page. Takes up to 90 seconds.

1
Critical
2
High
1
Medium
0
Low

Who reported these complaints

Sourced from public platforms across US, UK, and global markets — each report links to the original source.

Platform Reports Who's reporting
TechCrunch2Various regions
Reddit1US & global users
KrebsOnSecurity1Various regions
Lawsuits & Legal Action CRITICAL Source: TechCrunch · Nov 29, 2023 Added 4d ago

2023 support system breach exposed customer HAR files and impacted 1Password, BeyondTrust, Cloudflare

In October 2023, Okta disclosed a breach of its support case management system. Threat actors accessed customer support tickets containing HAR files with session tokens. Affected customers included 1Password, BeyondTrust, and Cloudflare. Okta initially minimized the scope; later disclosures revealed all support system customers were affected.

Lawsuits & Legal Action HIGH Source: TechCrunch · Mar 22, 2022 Added 4d ago

2022 Lapsus$ breach via support vendor Sitel

In March 2022, Okta disclosed that the Lapsus$ threat actor group had accessed its internal systems via compromised credentials at support subprocessor Sitel. Okta's initial disclosure was criticized as slow and understated.

Billing Problems HIGH Source: Reddit Added 4d ago

Customer Identity pricing significantly more expensive than legacy auth providers

Companies migrating from legacy identity to Okta Customer Identity Cloud (formerly Auth0) describe sticker shock at scale — MAU-based pricing for consumer applications can run $23,000+/month for high-traffic consumer apps.

Support Failures MEDIUM Source: KrebsOnSecurity · Nov 29, 2023 Added 4d ago

Post-breach communication criticized as delayed and minimizing

Both the 2022 and 2023 incidents generated substantial criticism of Okta's breach communication — slow initial disclosure and minimizing statements that later required correction.