Can't sign in to an app with Okta FastPass

If you can't sign in to your app with Okta FastPass and receive a message in the sign-in window, you might be able to troubleshoot the problem.

After you fix the issue, try to sign in to your app again. If you still can't access your app, contact your organization's help desk for assistance.

Before you begin

Ensure that you're using the latest version of Okta Verify.

Generic message

If you receive a Device requirements not set message, your device doesn't meet your organization's security requirements. Check the Device health page in Okta Verify to see the device conditions that are blocking access to your app.

Open Okta Verify on your device.
Go to the Device health page:
- On Android, go to Settings (...)Device health.
- On iOS, go to Settings (...)Device Health.
- On macOS or Windows, click the gear icon, and then select View device health.

Identify which security checks failed and follow the instructions to fix the issue.

Message	What to fix
Outdated operating system version	Update to the latest version of your operating system.
No password set	Ensure that your device has a password set on the lock screen.
Biometric authentication is not enabled	Ensure you can unlock your device with your fingerprint or face recognition.
Disk is not encrypted	Encrypt your device.
Operating system is rooted or jailbroken	Reset your device to remove any unofficial versions of the operating system that were installed.
Device has hardware keystore	You may be required to access protected resources from a device that has a built-in hardware-backed keystore. There's no remediation for this error other than using a different device.

After you complete the security remediation steps, if you still can't access your app, contact your organization's help desk for assistance.

Messages in the sign-in window

The remediation steps in the following tables depend on your device operating system version. For details, see the documentation for your operating system and device manufacturer:

Android

Message	Remediation
Update to Android version number	On your device, go to Settings. Scroll down and select System. Select Software update or System update. The wording may vary depending on your device. If an update is available, tap Download and install. After the installation, your device restarts automatically and runs the latest version of Android. The steps might vary slightly depending on the make and model of your device and the version of Android you're running. Some devices might have a separate app for checking and downloading updates.
Enable lock screen	Your device must have a lock screen enabled. On your device, go to Settings. Scroll down and tap Security or Lock screen and security. Go to your phone manufacturer's support page for details. Tap Screen lock or Screen lock type. Choose the type of lock screen that you want to use, such as Pattern, PIN, or Password. Set up the lock screen by following the prompts. For example, if you choose a pattern lock, you need to draw a pattern that you use to unlock your device. Choose how quickly your device locks after it goes to sleep. This can help protect your device if you accidentally leave it unlocked.
Enable lock screen and biometrics	Ensure you can unlock your device with your fingerprint or face recognition. On your device, go to Settings. Go to Security or Lock screen and security. Go to your phone manufacturer's support page for details. Tap Biometrics or Biometric preferences. Turn on the option for the type of biometric authentication you want to use, such as Fingerprint or Face unlock. Follow the instructions on the screen. After you enabled biometrics, go back to the Lock screen and security section. Tap Screen lock or Screen lock type. Choose the type of lock screen that you want to use, such as Pattern, PIN, or Password. Go to Biometrics or Biometric preferences and turn on the option for the type of biometrics you want to use on your lock screen. After you set up the lock screen, you can use biometric authentication to unlock your device.
Encrypt your device	Your Android device is required to have encryption enabled. On your device, go to Settings. Go to Security or Lock screen and security. Tap Encrypt phone or Encrypt tablet. If you have a screen lock set up, you're prompted to enter your Pattern, PIN, or Password. Read the information about encryption and tap Encrypt phone or Encrypt tablet to proceed. Your device begins the encryption process, which may take an hour or more depending on the amount of data stored on your device. When the encryption process is complete, you're prompted to enter your screen lock password, PIN, or pattern to access your device.

iOS

Message	Remediation
Update to iOS version number	Make sure that your device is connected to Wi-Fi and has enough battery life or is plugged in. On your device, go to SettingsGeneralSoftware Update. If an update is available, tap Download and Install. After the download is complete, tap Install Now. Your device restarts and the update process begins. During this time, your device might restart again and you might see a progress bar on the screen. When the update is complete, your device restarts again and you see the Hello screen.
Set a passcode for the lock screen	Your iOS device is required to have a lock screen enabled. On your device, go to Settings. Scroll down and tap Touch ID & Passcode or Face ID & Passcode, depending on your device model. Enter your current passcode or use Face ID or Touch ID to authenticate. Tap Turn Passcode On or Change Passcode if you already have one set up. Choose a 6-digit passcode, or tap Passcode Options to choose a custom alphanumeric code or a 4-digit code. Reenter your passcode to confirm it.
Set passcode for lock screen and enable Touch ID or Face ID	Your iOS device must have Touch ID or Face ID enabled. On your device, go to Settings. Scroll down and tap Touch ID & Passcode or Face ID & Passcode, depending on your device model. Enter your current passcode or use Face ID or Touch ID to authenticate. To enable Face ID, tap Enroll Face. To enable Touch ID, tap Add a Fingerprint. Follow the instructions to scan your face or fingerprint. You may need to reposition your face or finger a few times until the device has a good scan. When the scan is complete, tap Continue. You're prompted for Face ID or Touch ID for certain features such as unlocking your device, making purchases, or accessing passwords. With the toggle, enable the features you want to use with Face ID or Touch ID.

Message

Remediation

Update to iOS version number

Make sure that your device is connected to Wi-Fi and has enough battery life or is plugged in.
On your device, go to SettingsGeneralSoftware Update.
If an update is available, tap Download and Install.
After the download is complete, tap Install Now.

Your device restarts and the update process begins. During this time, your device might restart again and you might see a progress bar on the screen. When the update is complete, your device restarts again and you see the Hello screen.

Set a passcode for the lock screen

Your iOS device is required to have a lock screen enabled.

On your device, go to Settings.
Scroll down and tap Touch ID & Passcode or Face ID & Passcode, depending on your device model.
Enter your current passcode or use Face ID or Touch ID to authenticate.
Tap Turn Passcode On or Change Passcode if you already have one set up.
Choose a 6-digit passcode, or tap Passcode Options to choose a custom alphanumeric code or a 4-digit code.
Reenter your passcode to confirm it.

Set passcode for lock screen and enable Touch ID or Face ID

Your iOS device must have Touch ID or Face ID enabled.

On your device, go to Settings.
Scroll down and tap Touch ID & Passcode or Face ID & Passcode, depending on your device model.
Enter your current passcode or use Face ID or Touch ID to authenticate.
To enable Face ID, tap Enroll Face. To enable Touch ID, tap Add a Fingerprint.
Follow the instructions to scan your face or fingerprint. You may need to reposition your face or finger a few times until the device has a good scan.
When the scan is complete, tap Continue.

You're prompted for Face ID or Touch ID for certain features such as unlocking your device, making purchases, or accessing passwords.
With the toggle, enable the features you want to use with Face ID or Touch ID.

macOS

Message	Remediation
Update to macOS version number	Make sure that your computer is connected to Wi-Fi and has enough battery life or is plugged in. From the Apple menu, click System SettingsGeneralSoftware Update. If an update is available, click Upgrade Now.
Set a password for the lock screen	From the Apple menu, click System SettingsUsers & Groups. Follow the instructions to set up a password.
Turn on FileVault	Follow the Apple documentation to turn on FileVault. Follow the steps based on your macOS version. Click Turn On FileVault to encrypt the content of your computer to prevent unauthorized access. You're prompted to create a recovery key. Follow the instructions to create and verify your recovery key. Choose whether to store your recovery key with Apple or to keep it locally. If you have multiple user accounts on your Mac, you're prompted to choose which accounts should be allowed to unlock the disk. Choose the accounts that you want to be able to unlock the disk. Restart your Mac when prompted. When your computer restarts, the encryption process begins. This may take some time, depending on the size of your disk and the speed of your computer. After the encryption process is complete, sign in as usual.

Windows

Message	Remediation
Update to Windows version number	Windows 10 From the Start menu click SettingsUpdate & SecurityWindows Update. Windows automatically checks for updates and downloads any available updates. After the download is complete, click Restart now to install the updates. Your computer restarts and the installation process begins. Follow the instructions to complete the installation process. Your computer restarts again after the installation process is complete. Windows 11 From the Start menu click SettingsWindows Update. Windows automatically checks for updates and downloads any available updates. If there are updates available, click Download and install. Follow the on-screen instructions to complete the installation process. Your computer restarts several times during the installation process.
Enable Windows Hello for the lock screen	Your Windows device is required to have Windows Hello enabled. From the Start menu click SettingsAccountsSign-in options. Under Windows Hello, click Set up if you haven't already set up Windows Hello. If you have already set up Windows Hello, click Improve recognition. Follow the instructions to improve recognition, which may involve positioning your face or fingerprint in front of the camera or scanner multiple times. When the recognition process is complete, click Done to exit.
Encrypt all internal disks with BitLocker	In the search box in the taskbar, type Manage BitLocker and select it from the list of results. In the BitLocker Drive Encryption window, find the drive you want to encrypt and click Turn on BitLocker. Choose how you want to unlock the drive, either with a password or with a smart card. If you choose a password, make sure it's a strong and memorable one. Choose where you want to store your recovery key. You can save it to your Microsoft account, a file, or a USB drive. If you choose to save it to a file or USB drive, make sure to keep it in a safe place. Choose whether to encrypt the entire drive or just the used space. Encrypting the entire drive provides better security but takes longer. Click Start Encrypting to begin the encryption process. Wait for the encryption process to complete. This may take some time, depending on the size of your drive and the encryption method you chose. When the encryption process is complete, your drive is locked and you must enter your password or insert your smart card to unlock it.

Message

Remediation

Update to Windows version number

Windows 10

From the Start menu click SettingsUpdate & SecurityWindows Update. Windows automatically checks for updates and downloads any available updates.
After the download is complete, click Restart now to install the updates. Your computer restarts and the installation process begins.
Follow the instructions to complete the installation process. Your computer restarts again after the installation process is complete.

Windows 11

From the Start menu click SettingsWindows Update. Windows automatically checks for updates and downloads any available updates.
If there are updates available, click Download and install.
Follow the on-screen instructions to complete the installation process.

Your computer restarts several times during the installation process.

Enable Windows Hello for the lock screen

Your Windows device is required to have Windows Hello enabled.

From the Start menu click SettingsAccountsSign-in options.
Under Windows Hello, click Set up if you haven't already set up Windows Hello. If you have already set up Windows Hello, click Improve recognition.
Follow the instructions to improve recognition, which may involve positioning your face or fingerprint in front of the camera or scanner multiple times.
When the recognition process is complete, click Done to exit.

Encrypt all internal disks with BitLocker

In the search box in the taskbar, type Manage BitLocker and select it from the list of results.
In the BitLocker Drive Encryption window, find the drive you want to encrypt and click Turn on BitLocker.
Choose how you want to unlock the drive, either with a password or with a smart card. If you choose a password, make sure it's a strong and memorable one.
Choose where you want to store your recovery key. You can save it to your Microsoft account, a file, or a USB drive. If you choose to save it to a file or USB drive, make sure to keep it in a safe place.
Choose whether to encrypt the entire drive or just the used space. Encrypting the entire drive provides better security but takes longer.
Click Start Encrypting to begin the encryption process.
Wait for the encryption process to complete. This may take some time, depending on the size of your drive and the encryption method you chose.
When the encryption process is complete, your drive is locked and you must enter your password or insert your smart card to unlock it.