This article addresses the situation in which a device is wiped and handed over to a new joiner when a user leaves the organization. The hostname does not change, so Okta will record that two users have registered the same device.
See below how to prevent this from happening and how to generate and download a report of the machines that are enrolled in Okta Verify / Okta FastPass.
- Okta Verify
- Multi-Factor Authentication (MFA)
- Okta Identity Engine (OIE)
When a machine is wiped, the Okta Verify enrollment record will remain on the server, as it has no knowledge that the machine was wiped. Likely, if the user is deleted, their factors would be deleted as well, whereas deactivated users would keep a record of their enrollments.
In order to get a list of Okta Verify enrollments, a solution might be found in User Factors, which can list and provide links for the DELETE operations for those factors.
