Okta Verify push notifications remain unavailable until Okta Verify is configured to allow push verification in Okta Identity Engine. Enable the push notification option in the authenticator settings, then re-enroll previously enrolled users if push notifications do not appear.

The user needs Okta Verify to send push notifications during authentication on Android and iOS devices.

• Okta Identity Engine (OIE)
• Okta Verify
• Push notifications on Android and iOS devices
• Okta Verify authenticator configuration

How are Okta Verify push notifications enabled?

These steps enable Okta Verify push notifications for Android and iOS devices in the Admin Console.

1. In the Admin Console, go to Security > Authenticators.
2. In the Setup tab, locate Okta Verify.
3. Select Actions > Edit.
4. In the Verification options section, select Push notifications (Android and iOS only).
5. Select Save.

These images show the authenticator settings and the push notification option.

NOTE:

• If end users are behind a firewall that restricts traffic to or from the Internet, they may be unable to receive Okta Verify push notifications. To allow push notifications, open ports 5228, 5229, and 5230 on the firewall to allow connectivity with Google Firebase Cloud Messaging. Also, allow outgoing connections to all IP addresses in the IP blocks associated with Google's ASN 15169.
• If Push notifications does not appear in the Edit section of Okta Verify, the organization may not have the Multi-Factor Authentication (MFA) or Adaptive MFA stock keeping unit (SKU) enabled. Contact the Okta account team or open a case with Okta Support.
• If a user enrolled before push notifications were enabled, that user does not have the push notification profile. Re-enroll that user in Okta Verify to add the new option.

Related References

• Configure Okta Verify Options