Deploy Okta Verify to Windows devices

As an alternative to end users manually installing Okta Verify on Windows devices, you can silently install it.

If Windows Okta Verify is deployed to a device with the OrgUrl flag specified, Okta Verify checks the Okta server for app updates. If a new version exists, it automatically downloads and then updates Okta Verify. If the OrgUrl flag is not specified, the end user must have an enrollment in Okta Verify before the app will automatically update.

Before you begin

Be aware that end users might see the following notice and prompt when you silently install Windows Okta Verify:

  • End user license agreement (EULA) and Crash Reporting notice
  • If you silently install Okta Verify on end-user Windows devices using your mobile device management (MDM) software or Microsoft Endpoint Manager (MEM), end users are not shown the EULA or Crash Reporting notice. Users who want to see those notices need to uninstall Okta Verify and then reinstall it by double-clicking the Okta Verify Setup file. The EULA and the Crash Reporting notices appear during re-installation.

  • User Account Control (UAC) prompt
    • MEM: If you use MEM to silently install Okta Verify on end-user Windows devices, end users are shown the UAC consent and credential prompts.
    • MDM: If you configure your MDM software to silently install Okta Verify on end-user Windows devices, end users are not shown UAC prompts.

Start this procedure

Complete one of the following installation procedures:

Install Okta Verify using your MDM software

Complete the steps in the Microsoft Intune document Add a Windows line-of-business app to Microsoft Intune. Make sure you select the Device Context option in Microsoft Intune (not User Context).

Install Okta Verify using MEM

Installation occurs at the system level. User-based installation is not supported.

  1. Copy the file Okta Verify Setup file to your MEM server.
  2. In the Configuration Manager console, go to Software Library > Application Management > Applications.
  3. On the Home tab, in the Create group, select Create Application.
  4. On the General page of the Create Application Wizard, select Automatically detect information about this application from installation files.
    • Type: Select Windows Installer (*.exe or *.msi).
    • Location: Browse to the Okta Verify file.
  5. Click Next.
  6. Follow the on-screen prompts.
  7. On the General information page, provide information about the application so that you can sort and locate it in the console:
    • Name: Enter a name.
    • Installation program: Specify the installation program, using one of the following flag options:
      • Install without specifying installer flags.

        For EXE: OktaVerifySetup-1.x.x.x-yyyyyyy.exe /q2

        For MSI: msiexec /I OktaVerifySetup-1.x.x.x-yyyyyyy.msi EXEOPTIONS=”/q2”

      • Install with specifying installer flags. In the following examples, square brackets ("[" and "]") are used to indicate optional parameters. For flag and value options, see Managed app configurations for Windows devices.

        For EXE: OktaVerifySetup-1.x.x.x-yyyyyyy.exe -q2 [<Flag_1>=<Value_1>] [<Flag_2>=<Value_2>] [...]

        EXE example:  OktaVerifySetup-1.x.x.x-yyyyyyy.exe -q2 OrgUrl=

        For MSI: msiexec /I OktaVerifySetup-1.x.x.x-yyyyyyy.msi /qn EXEOPTIONS="-q2 [<Flag_1>=<Value_1>] [<Flag_2>=<Value_2>] [...]"

        MSI example: msiexec /I OktaVerifySetup-1.x.x.x-yyyyyyy.msi /qn EXEOPTIONS="-q2 OrgUrl="

  8. Click Next.
  9. On the Summary page, confirm the settings and complete the wizard.
  10. In the center pane of the Applications list, right-click the app and select Deploy.
  11. Follow the prompts in the Deploy Wizard.

Related topics