Security & Compliance Automation · Risk Score 98 · Severe
Okta Complaints: What Buyers Are Actually Reporting
The identity and access management standard — reliable product, eventful security history
4 documented complaints against Okta — paraphrased from BBB filings, Trustpilot reviews, Reddit threads, and public forum posts. Newest complaints first.
Our AI scanner searches Reddit, Trustpilot, BBB, and news sources for fresh complaints from the past year, paraphrases what it finds, and adds anything new to this page. Takes up to 90 seconds.
Who reported these complaints
Sourced from public platforms across US, UK, and global markets — each report links to the original source.
| Platform |
Reports |
Who's reporting |
| TechCrunch | 2 | Various regions |
| Reddit | 1 | US & global users |
| KrebsOnSecurity | 1 | Various regions |
Lawsuits & Legal Action
CRITICAL
Source: TechCrunch · Nov 29, 2023
Added 4d ago
2023 support system breach exposed customer HAR files and impacted 1Password, BeyondTrust, Cloudflare
In October 2023, Okta disclosed a breach of its support case management system. Threat actors accessed customer support tickets containing HAR files with session tokens. Affected customers included 1Password, BeyondTrust, and Cloudflare. Okta initially minimized the scope; later disclosures revealed all support system customers were affected.
Lawsuits & Legal Action
HIGH
Source: TechCrunch · Mar 22, 2022
Added 4d ago
2022 Lapsus$ breach via support vendor Sitel
In March 2022, Okta disclosed that the Lapsus$ threat actor group had accessed its internal systems via compromised credentials at support subprocessor Sitel. Okta's initial disclosure was criticized as slow and understated.
Billing Problems
HIGH
Source: Reddit
Added 4d ago
Customer Identity pricing significantly more expensive than legacy auth providers
Companies migrating from legacy identity to Okta Customer Identity Cloud (formerly Auth0) describe sticker shock at scale — MAU-based pricing for consumer applications can run $23,000+/month for high-traffic consumer apps.
Support Failures
MEDIUM
Source: KrebsOnSecurity · Nov 29, 2023
Added 4d ago
Post-breach communication criticized as delayed and minimizing
Both the 2022 and 2023 incidents generated substantial criticism of Okta's breach communication — slow initial disclosure and minimizing statements that later required correction.