Deploy Desktop MFA to your Windows endpoints

After you download the Okta Verify package from the Admin Console, use your MDM solution to deploy it to your Windows endpoints.

Note:

Okta Verify updates automatically when new releases are available. See Okta Verify for Windows release notes.

For more details, see Add a Windows line-of-business app to Microsoft Intune in the Microsoft documentation.

Procedure

To enable online Desktop MFA methods, call the Okta Verify setup executable with these command-line parameters:

ORGURL: The full URL of your Okta org.
CLIENTID: The Client ID that you saved from the General tab of the Desktop MFA app. See Create and configure the Desktop MFA app for Windows.
CLIENTSECRET: The Client Secret that you saved from the General tab of the Desktop MFA app.
SKU: SKU=ALL

Note:
If you install Okta Verify with SKU=ALL, then the Windows Credential Provider is hidden when the user signs in.

Example

OktaVerifySetup-6.6.2.0-4997fa8.exe SKU=ALL ORGURL=https://customerorg.oktapreview.com CLIENTID=0oa2xxxEXamPL3xxxxxx CLIENTSECRET=xxxxxxxx

Silent installation

To silently install Okta Verify for Windows, use the command-line installer with the /q option. This hides the interface during installation, so the user doesn't receive prompts or messages, and can't cancel the installation.

In the Admin Console, go to Settings > Downloads.
Download the Okta Verify for Windows installer file.
Open a command prompt and navigate to the directory that contains the downloaded installer file.
Execute the following command, replacing SKU, ORGURL, CLIENTID, and CLIENTSECRET parameters to match your Okta org:
```
OktaVerifySetup-<x.x.x.x-yyyyyyy>.exe SKU=ALL ORGURL=https://<org.okta.com> CLIENTID=<clientID> CLIENTSECRET=<clientSecret> /q
```
Note:
The /q flag at the end of the command runs the installation in quiet mode.

Next step

Configure and deploy Desktop MFA policies for Windows