Customers migrating to OIE have raised concerns regarding the VMware Device Trust integration, specifically in relation to the classic SAML authentication. They have encountered an issue where they have to remove and then reintroduce device trust during the OIE upgrade process.

• VMware Device Trust Integration
• Okta Identity Engine (OIE) Migration

The reason for the requirement to disable and then reconfigure device trust during the OIE upgrade is the change in certification management. Initially, the certificates are managed by the Okta Mobile app. However, with OIE, certificate management is shifted to Okta Verify. The Okta Mobile app has been deprecated in the OIE environment.

1. Before starting the OIE upgrade, disable the VMware Device Trust.
2. Proceed with the OIE upgrade process.
3. After completing the upgrade, re-enable and configure the VMware Device Trust.
4. Ensure that Okta Verify now manages certificates in the OIE environment.

Related References

• Integrate Okta Device Trust with VMware Workspace ONE for iOS and Android devices
• Integrate Okta Device Trust with VMware Workspace ONE for Windows and macOS computers
• Migrate from Device Trust to Okta FastPass FAQ