• Public

Multi-Factor Authentication

Skip Feed
  1. Hi , need assistance with resetting the Okta MFA for an admin user account. I no longer have access to the previously configured device, as the phone with the Okta Verify app has been lost.

    Due to this, I am unable to complete the authentication process. Could you please help reset or reconfigure the MFA so I can set it up on a new device?

    Please let me know if any additional verification or information is required from my end.


    • Paul S. (Okta, Inc.)

      Hello @SujaE.90746 (Customer)​ Thank you for posting on our Community page!

       

      If you are an employee, contractor, patient, student, or client of a company, institution, or service provider that requires you to use Okta Verify, please contact the company's, institution's, or service provider's IT support or Help Desk team.

       

      While Okta provides the Product (Okta Verify app), your company, institution, or service provider handles individual account management (like MFA reset or password management) and access policies (such as recovery options or alternative factors).

       

      Please contact your company's or service provider's IT support or Help Desk so they can review your account information and provide further assistance.

       

      Thank you for reaching out to our Community and have a great day!

      --

      Help others in the community by liking or hitting Select as Best if this response helped you.

      Expand Post

  2. Hi, we are seeing quite a lot of the MFA Failure notifications like these ones below, and originating from different countries, what does this mean and how to stop it please? Thank you

     

    image


  3. Can Fido enrollment be simplified? Am I missing something?

     

    It seems to me that one used to be able to enroll a Fido factor (security key or print reader) by just choosing that option from the available authenticators and following simple prompts. This appears to have gotten more complex. I'm trying to enroll a physical key in Chrome.

     

    Prompt 1. "Create a passkey." 

    [I tried adding a screenshot, but app won't let me save the post]

     

    As an end-user, I'd be asking "what's a passkey and I don't have time to learn what it is." Hit "continue" and I'm being prompted by my browser's print reader and it enrolls the print reader. Never offers to enroll the key.

     

    Try "Save another way." 

     

    Prompt 2 "Choose where to save..."

    [I tried adding a screenshot, but app won't let me save the post]

     

    I figure the third choice makes sense, but I'd hate to be an end user, or the team that supports them.

     

    Prompt 3. QR code or key. 

    [I tried adding a screenshot, but app won't let me save the post]

     

     

    I tap the key and get enrolled. But can I keep that QR code away from my end users and simplify their path?

     

    We have "Block synced passkeys for FIDO2 (WebAuthn) Authenticators" enabled. Org is Classic. Device is Mac Sequoia. Browser is Chrome, 100% up-to-date.

     

    Thanks.

    Expand Post

    • Paul S. (Okta, Inc.)

      Hello @IsaacB.81593 (Customer)​ Thank you for posting on our Community page!

       

      Enrolment should be straight forward, maybe something has been miss-configured or additional steps added to the enrolment. please see our doc below:

      https://help.okta.com/oie/en-us/content/topics/identity-engine/authenticators/configure-webauthn.htm

       

      If there are still issues I would recommend to Open a case with Support for additional assistance.

       

      Thank you for reaching out to our Community and have a great day!

      --

      Help others in the community by liking or hitting Select as Best if this response helped you.

      Expand Post

  4. Did you miss our insightful Ask Me Anything session with an Okta product expert on Multi-

    Factor Authentication? Don’t worry—we’ve got you covered!

     

    Our recent Ask Me Anything session on adopting stronger multi-factor authentication (MFA) with Okta's product expert was packed with engaging discussions and valuable insights. If you missed it, don’t worry—we’ve rounded up the top highlights for you! Discover key takeaways on getting started, best practices, use cases, and more. Read the recap.


  5. Is your MFA truly phishing-resistant? 🔐

     

    Our new technical deep dive on Okta FastPass details how Possession-Based Authentication, utilizing Cryptographic Binding and Origin Binding, combats AiTM attacks.

     

    Learn about the architectural mechanics, best practices for Global Session and Authentication Policy in OIE, and a strategic framework for a scalable, zero-friction passwordless rollout.


    • Paul S. (Okta, Inc.)

      Great deep dive—Origin Binding is key!

  6. Check out the January Okta Community Monthly Buzz

    This month's edition features helpful insights from @John Cokkinias (Okta)​ on our recent Ask Me Anything (AMA) on MFA, details on the improved Okta Customer Success Hub, training and certification updates, member shout-outs, how-to support resources, new product features, and more. You can check out the latest and greatest highlights from our January Monthly Buzz here.


  7. I need someone to contact me regarding two sources of MFA that are hitting my phone.

    I have 2 separate shortcode text MFA that I get, and they are NOT from anything I am doing. Both shortcodes "Help" direct me to Okta phone numbers, but I cannot interact because I am NOT a customer. Please someone contact me and help me find out which of these MFA codes are being sent to me from where so I can secure the login further. Text reads: ###### is your verification code. Valid for 5 minutes. No idea which company or where it comes from, only from Okta hosting the shortcode.


  8. Hi all! Our first Ask Me Anything of 2026 is happening on January 20, and it’s all about the adoption of stronger authentication MFA. With the start of a new year, there's no better time to reinforce your security postureWhile Multi-Factor Authentication (MFA) is the most effective defense against credential theft, simply enabling it isn't enough. You'll need to implement stronger, phishing-resistant authenticators across your entire user base! Whether you're curious about general insights on deploying, managing, or scaling stronger authentication MFA, now's your chance to get answers directly from an Okta product expert.

      

    Post your questions in the discussion thread here by January 19. On January 20, our product team will share written responses to everything you’ve asked.


End of Feed
8 Chatter Feed Items

Group Details

Details

Description
Information
Member Count
68 Members