About Okta Verify

Okta Verify is an MFA factor and authenticator app developed by Okta. The app is used to confirm a user's identity when they sign in to their Okta account.

After an end user installs the app on their primary device, they can verify their identity by approving a push notification or by entering a one-time code. When a user signs in to their organization, the Okta Verify app prompts them to verify their identity.

Note: End users can only register one device at a time with Okta Verify. To register a new device, users must reset their Okta Verify account and then open Okta Verify to add and register their new device.

Are you an end user looking to set up and use Okta Verify? See Okta Verify for end users.

HealthInsight task recommendations

Enable Okta Verify (with push when available) to allow end users to authenticate with a strong MFA factor.

Okta recommends

Enable Okta Verify as a primary factor. If available for your org, also enable Okta Verify with Push.

Consider this recommendation when you update factor enrollment policies.

Security impact


End-user impact


Okta Verify typical workflow



Role Specifications

1. Configure Okta Verify The admin enables and configures Okta Verify in the admin console. Okta admin
2. Configure Risk Scoring The admin configures Risk Scoring in the admin console.

Okta's Risk Scoring capability allows you to increase the level of security that guards sign-ins to your Okta org. When enabled, the Risk Scoring engine assesses sign-in attempts against a number of criteria, including details about the device and its location. It then assigns a risk level to each Okta sign-in, which can then be used for dynamic responses according to the level of risk assessed. For example, admins might want Okta to prompt users for multifactor authentication if the sign-in is considered high-risk.

Okta admin
3. Install and set up Okta Verify.
See Documentation for end users
  1. The end user signs in to their Okta org on a computer and is prompted to enroll with Okta Verify for the first time.
  2. The end user enrolls their device in Okta Verify by scanning a QR code in their computer browser by using the Okta Verify app.
  3. The end user chooses an authentication method: a push notification to be sent to their mobile device or a verification code.
End user
4. Authenticate with Okta Verify.
See Documentation for end users
The end user either approves the push notification or enters the verification code displayed in the Okta Verify app. After successful verification, the end user logs in automatically to Okta, and is redirected to their account dashboard. End user

Related topics

Okta Verify Overview

Okta Verify Release Notes

Okta Mobile

Multifactor Authentication