• Public

Okta Device Access

Skip Feed

  1. Christina.J (Customer Support Online Community and Social Care)

    September 10, 2025 at 10:01 PM

    September 29 Ask Me Anything: Okta Device Assurance

    Hi all! Our next Ask Me Anything is happening on September 29, and it’s all about Okta Device Assurance, a capability that enforces security requirements by ensuring that only trusted, compliant devices can access company resources. Whether you’re looking for insights on deploying, managing, or scaling Device Assurance, now is the time to ask our product expert. 

     

    Post your questions in the discussion thread here by September 26. On September 29, our product host will share written responses to everything you’ve asked.

    • 1 comment
    • 32 views
    Mihai Negoita - Okta likes this.

    • CynthiaL.54079 (Okta)

      Announcing Device-Bound Single Sign-On for Okta Device Access

       

      We are excited to announce the launch of Device-Bound Single Sign-On (SSO), now available for self-service Early Access on both Windows and macOS.

       

      As identity-based attacks become more sophisticated, traditional SSO and MFA are often insufficient to protect against threats such as session replay. Device-Bound SSO addresses these challenges by shifting security to the device itself.

       

      Key Benefits:

      • Hardware-Protected Security: Initiates a cryptographically secure session tied to the physical device, making stolen sessions useless on other machines.
      • Streamlined User Experience: Reduces authentication prompts by leveraging a successful device login to provide seamless access to downstream applications.
      • Unified Identity Security Fabric: By joining devices directly to Okta, devices are recognized as first-class identities, enabling a handshake of trust between the user, device, and organization.

       

      Want to dive deeper? Check out the blog and our product documentation to learn how to enable Device-Bound SSO for your organization.

      Expand Post

  2. CynthiaL.54079 (Okta)

    Edited September 9, 2025 at 9:34 PM

    We are excited to announce the Early Access availability of two new features with Okta Device Access: Device Logout for macOS and Desktop MFA Recovery for Windows.

     

    Device Logout for macOS

    This feature gives administrators the ability to remotely log a user out of their macOS device. This is particularly useful for security-sensitive situations, such as when a user's credentials have been compromised or during employee offboarding. The logout command forces the user to reauthenticate to their device, helping to ensure that only authorized individuals have access. Take a look at this blog and the product documentation to learn more.

     

    Desktop MFA Recovery for Windows

    This feature provides a secure and efficient way for IT administrators to help users who are locked out of their Windows computers due to a lost or inaccessible desktop MFA authenticator. An admin can generate a temporary, time-limited PIN that the user can use to regain access to their machine and enroll a new authenticator. Take a look at the product documentation to learn more.

     

    Please refer to the Okta documentation for more detailed instructions on how to enable Early Access features.

    Expand Post
    • 44 views
    ArkadiuszK.89454 and Mihai Negoita - Okta like this.

  3. Christina.J (Customer Support Online Community and Social Care)

    July 24, 2025 at 6:28 PM

    Did you miss our insightful Ask Me Anything session with an Okta product expert on Okta Device Access? Don’t worry—we’ve got you covered!

     

    Our recent Ask Me Anything session on Okta Device Access Policies with Okta's product expert was packed with engaging discussions and valuable insights. If you missed it, don’t worry—we’ve rounded up the top highlights for you! Discover key takeaways on getting started, best practices, use cases, streamlining security, and more. Read the recap.

    • 33 views
    Mihai Negoita - Okta likes this.

  4. User16370330549592969269 (Customer Support Online Experience)

    June 23, 2025 at 11:12 PM

    Hi all! Our next Ask Me Anything is happening on June 27, and it’s all about Okta Device Access. Curious how this capability helps secure access starting right at the device login screen? Whether you're just exploring it, planning a rollout, or looking to scale it across your workforce, this is your chance to get answers directly from Okta product experts.

     

    Post your questions in the discussion thread here by June 26. On June 27, our product team will share written responses to everything you’ve asked.

    • 44 views

  5. User16370330549592969269 (Customer Support Online Experience)

    April 9, 2025 at 9:06 PM

    Okta Launch Week 2025 is here!

    Check out our latest corporate blog post for an inside look at the newest advancements in Identity Security, unveiled during Launch Week. As cyberthreats evolve, Okta continues to lead the charge in delivering seamless, secure access management solutions. Explore how our latest updates are empowering organizations to stay ahead of threats while securing workforce, customer, and AI-driven systems. Dive in to discover how Okta is shaping the future of Identity Security.

     

    We'd love to hear what excites you most about these new innovations! How do you think they’ll enhance your day-to-day? Drop a comment in the discussion post and let us know!

    • 104 views

  6. CynthiaL.54079 (Okta)

    March 4, 2025 at 3:58 PM

    Q1 2025 Product Update: The latest on Okta Device Access supported features

     

    We're excited to introduce several new capabilities for Okta Device Access, designed to enhance security, streamline access management, and improve user experience.

     

    • FIDO2 security keys are now supported for Desktop MFA for Windows. You can allow users to securely sign in to their Windows devices using a security key. Read more about this enhancement in the product documentation.
    • Just-in-Time Local Account Creation for macOS is now generally available. You can allow users to create an account on a macOS computer by entering their Okta username and password in the macOS login window. To turn on this feature, take a look at these next steps.
    • Desktop Password Sync for macOS Sequoia is now available. Admins can configure new authentication policies, such as requiring Okta password authentication from the FileVault, unlock, and login screens. Users can also sync their passwords from the FileVault screen. Read more in the product documentation.
    • Okta Verify push notifications with number challenge for Desktop MFA is now generally available. Learn more about how to turn on this feature for Windows and macOS.

     

    These updates aim to make Okta Device Access more flexible and efficient for your organization. Please let us know what you think!

    Expand Post
    • 91 views
    srdf7 likes this.

  7. Schrodyr (Freeman)

    February 18, 2025 at 11:16 PM

    We've been testing DesktopMFA for a few months, and we're wanting to have as close to the same experience as possible between Mac and PC, but there seem to be a few roadblocks. I wanted to post here and make sure I'm not missing something.

     

    Mac:

    When a user boots up, they are prompted for their Password, then Okta prompt to send an OV Push. When their screen saver kicks in, they can unlock with TouchID or Password.

     

    **I understand Apple's stance on the password and have accepted it will always be there.

     

    PC:

    Option 1:

    When a user boots up, they are prompted by Okta and sent an OV Push. When their screen saver kicks in, they unlock with OV Push.

     

    Option2:

    When a user boots up, they can choose between Okta and Windows Hello allowing them to login with OV Push, or Hello (pass/pin/face).

     

    Ideal PC Option:

    User boots up PC, prompted by Okta for OV Push. When their screen saver kicks in, they unlock with Windows Hello.

     

    Is the Ideal PC option possible? I'd prefer to have the added security of forcing MFA via Okta at boot, but don't want users to have to reach for their phone every time the screensaver kicks in.

     

    Thanks!

    Expand Post
    • 4 comments
    • 117 views
    StephaneD.70687 likes this.
    1 of 4

  8. ntwuo (ntwuo)

    January 22, 2025 at 3:56 AM

    I got a Macbook from eBay, and it says OKTA on the screen and asks for a username and password. Is there a way this company can reset it or something? I enabled remote access

    • 1 comment
    • 120 views

End of Feed
8 Chatter Feed Items

Group Details

Details

Description
Collaborate with other customers on Okta Device Access, lend your expertise, ask questions, or gain insight to help you troubleshoot or become more knowledgeable.
Show More
Information

Okta Device Access extends the simplicity and security you know from Okta to the very first moment of your workday: signing in to your computer. By joining Windows and macOS devices to Okta, organizations enable their workforce to turn on their computers, sign in with their Okta credentials, and then—with that single device login—access their device account, apps, and resources.


While fragmented systems create gaps between device identities and user identities, and with too many logins in between, Okta Device Access closes those gaps, supporting a connected identity security fabric that strengthens security while reducing login friction.

Show More
Member Count
42 Members
Owner
User16460653063307410261