<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Okta Verify and mac TouchID Fingerprint Removal Error
May 5, 2025
Devices and Mobility
Okta Identity Engine
Overview

After removing a fingerprint (or multiple) associated with Touch ID on a macOS Device and then adding a fingerprint back, the users will be asked to Enable TouchID while displaying an error similar to the one below, namely a grey (unavailable) Disable Touch ID option:

"Your organization requires Touch ID. Click
Enable Touch ID to keep using this account"

Touch ID Error 

 
Applies To
  • mac
  • TouchID
  • Okta Verify
  • Okta Identity Engine (OIE)
  • FastPass
  • Fingerprint Removal
Cause

If the end-user removes the Touch ID from the mac device, Okta Verify will try to find it but fail. Thus, based on the policies, the End-user will not be allowed to authenticate successfully.

 

If the customer adds a new Touch ID, the newly enrolled fingerprint will not be recognised by the Okta Verify app because the new Touch ID possesses a separate ID, not the one that Okta Verify has stored in its internal logs as a valid source of authentication. This will cause a conflict within the app, forcing the user to re-enroll entirely in Okta Verify. 

Solution

If it has reached the point where a fingerprint was added again to the app and the issue persists, the solution is to remove the Okta Verify enrollment and do it all over again.

Recommended content

Still looking for help?
Loading
Okta Verify and mac TouchID Fingerprint Removal Error