This article explains how to assign an existing device that a previous user enrolled to a new Okta user.

• Okta Identity Engine (OIE)
• Okta Verify
• Devices
• Multi-Factor Authentication (MFA)

Before the device administrator assigns an existing device to a new user, Okta administrator needs to remove the user from the existing device.  

Okta administrator needs to execute the following steps to remove old Okta user from existing device.

1. Go to the Okta Admin console, and go to Directory > Device.
2. Search for an existing device.

3. By Default, the Okta admin console does not provide a remove user option on the Device Management page. First, the Okta administrator needs to deactivate the device. Click the X mark on the searched device and click the Deactivate button.

NOTE: It is important to note that deactivation must occur first when deleting a device in Okta. Upon deactivation, the device will no longer have access to Okta's resources and any associated apps.

4. Click the link of the registered device, there is no Okta user in this device, as shown below.

5. On Okta Verify on an existing device, there is a red alert icon like below. This means an existing user can not use Okta FastPass when this user tries to access any applications.

6. The Okta administrator can remove an existing Okta user in Okta Verify. To do so, please click Remove account.

7. We can see there is no Okta user registered in Okta Verify.

8. Now, the Okta administrator makes a re-image for the device to assign this device to the new Okta User safely.

Related References

• Device registration
• Device lifecycle