Okta Verify for Admins

Okta Verify is a multifactor type developed by Okta that is used to verify an end user's identity via the Okta Verify mobile app.

When a user signs in to their organization, the Okta Verify app prompts them to verify their identity in order to authenticate successfully. After an end user installs the app on their primary device, they can verify their identity by approving a push notification or by entering a one-time code.

NoteEnd usersEnd users are people in your org without administrative control. They can authenticate into apps from the icons on their My Applications home page, but they are provisioned, deprovisioned, assigned, and managed by admins. can only register one device with Okta Verify at a time. To register a new device, end users must reset their Okta Verify account and then open Okta Verify to add and register their new device.


Are you an end user looking to set up and use Okta Verify? See Okta Verify for End Users.


HealthInsight: Why is this task recommended?

This feature is a HealthInsight security task. For more security recommendations from Okta, see HealthInsight.

Enable Okta Verify (with push when available) for end users to authenticate with a strong MFA factor.

Security impact: High

End-user impact: High

Okta recommends: Update factor enrollment policies based on the following:


Okta Verify General Flow

  1. Okta adminAn abbreviation of administrator. This is the individual(s) who have access to the Okta Administrator Dashboard. They control the provisioning and deprovisioning of end users, the assigning of apps, the resetting of passwords, and the overall end user experience. Only administrators have the Administration button on the upper right side of the My Applications page. enables and configures Okta Verify in the admin console.
  2. End user signs in to their Okta org and is prompted to enroll with Okta Verify for the first time.
  3. End user enrolls their device with Okta Verify by scanning a bar code in their browser using the Okta Verify appAn abbreviation of application. Essentially, it is a web-based site used to perform any number of specific tasks, and requires authentication from end users by signing in..
  4. End user verifies their identity either by 1) requesting a push notification sent to their mobile device or by 2) entering a verification code.
  5. End user either approves push notification or enters verification code displayed in the Okta Verify app.
  6. After successful verification, end user logs in automatically to Okta, and is redirected to their account dashboard.





Related Links