<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base

Device Check for CrowdStrike Integration

Last Updated:

Okta Identity Engine
Multi-Factor Authentication

Overview

The Zero Trust Assessment (ZTA) score is not transmitted to Okta during the login process. This article details how to gather the ZTA score.  

Applies To

  • Okta Identity Engine (OIE)
  • Crowdstrike
  • Custom expression 

Cause

During the login process, the ZTA score is not transmitted to Okta and the user will not be evaluated by a rule that has a custom expression requiring a minimal ZTA score.

The custom expression alone will not trigger a device check from Okta Verify, and that information will not be obtained.

Solution

To gather the ZTA score, Okta Verify must be called during the authentication process.

This can be done in 2 methods :

  1. Have a rule in place that limits the user to accessing Okta or a specific application only with Okta Verify FastPass.
  2. Have at least one rule that applies to the authentication policy in question to require the device to be registered, which will trigger a silent check of the device by Okta Verify FastPass, and the response will also contain the ZTA score as well.

Recommended content

Still looking for help?
Loading
Okta Support - Device Check for CrowdStrike Integration