This article reviews a known issue where an end-user may be shown an erroneous "Additional setup required" remediation message when an unmanaged device attempts to access a resource protected by a managed device authentication policy. The message may reference the incorrect device management solution and direct to an unrelated enrollment site.
- Okta Identity Engine (OIE)
- Android
- iOS
- macOS
- Windows
- Okta Verify
This occurs in environments where multiple MDM configurations for the same platform exist. When more than one device management configuration exists for the same platform, Okta Identity Engine uses the earliest created configuration to generate the remediation message. As such, the message may include the incorrect MDM solution names and enrollment links.
Follow these steps to prevent or reduce the impact of incorrect remediation messages:
- Open the Okta Admin Console.
- Navigate to Security > Device Integrations > Endpoint Management.
- Review device management configurations for each Platform.
- Confirm whether multiple configurations exist for the same platform with different solutions.
- Consolidate configurations per platform when possible to eliminate conflicts.
- Adjust authentication policies to reduce dependency on remediation for unmanaged devices (for example, create individual policies for unmanaged devices).
- Test changes with unmanaged devices to verify message accuracy.
