Administration
Demystifying Upgrading to OIE Series Episode #3b: Appendix - From Device Trust t
Dimitri Volkmann
Oct 11 2024

This Series is authored by Ruchir Parikh.


Welcome back to our “Demystifying Upgrading to OIE Series”!. 


In this series of 4 episodes, we will take a fictitious company and walk through the steps of the Okta Identity Engine (OIE) upgrade, offering tips and tricks along the way. 


This post is the appendix for Episode #3a.


Desktop & Mobile devices checklists

Post-OIE upgrade checklist for managed desktop devices

❐ Enable Okta FastPass 

  • Okta Administrator Dashboard → Authenticators → Okta Verify → Actions → Edit → “Okta FastPass (All platforms)”

❐ Enable Sign in with Okta FastPass button

  • Okta Administrator Dashboard → Authenticators → Okta Verify → Actions → Edit → “Show the “Sign in with Okta FastPass” button.
  • FastPass will function without enabling the button. If you are testing FastPass or are rolling out FastPass in batches, enabling this later is an option. 

Configure a Certificate Authority (CA)

  • Okta CA:
  • Deploy new Okta CA certificate via your MDM to end-user machines (Intermediate Certification Authorities → Certificates → Organization Intermediate Authority) 
  • Use your own certificate authority:
  • Ensure that client certificates issued by your CA are deployed on your organization's macOS and Windows devices.

❐ Deploy Okta Verify (OV) for Desktop (macOS or Windows | OV Configurations


❐ End-users must manually enroll into Okta Verify for Desktop


❐ End-users must log into Okta via Okta FastPass


Post-OIE upgrade checklist for managed mobile devices

❐ Deploy Okta Verify (OV) for Mobile along with the managed app configuration


❐ Enable Okta FastPass 

  • Okta Administrator Dashboard → Authenticators → Okta Verify → Actions → Edit → “Okta FastPass (All platforms)”


❐ Enable Sign in with Okta FastPass button

  • Okta Administrator Dashboard → Authenticators → Okta Verify → Actions → Edit → “Show the “Sign in with Okta FastPass” button.
  • FastPass will function without enabling the button. If you are testing FastPass or are rolling out FastPass in batches, enabling this later is an option. 


Configure Okta and MDM


❐ The user must enable FastPass on their Okta Verify mobile app post-OIE upgrade. (Android | iOS)


❐ New Okta Verify enrollments after FastPass is enabled on the tenant will automatically have FastPass enabled


❐ End-users must log into Okta via Okta Verify FastPass on Mobile


  • 0 Likes
  • 0 Comments
  • 575 Views