<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7Uj7SAFOkta Classic EngineMulti-Factor AuthenticationAnswered2024-04-30T09:18:25.000Z2017-10-06T01:08:08.000Z2020-11-26T07:05:07.000Z
te0qz and uaer4 like this.

  • evan.alter1.4865287258752158E12 (Okta, Inc.)

    Frankie -

    What is your use case? What are you trying to achieve?

     

    Can you hep me understand what you mean by a normal user who cannot login with a desktop but wants to setup the app?

     

    Thanks.

     

    Evan Alter

    Technical Support Engineer

    Okta Global Customer Care
    Expand Post

  • evan.alter1.4865287258752158E12 (Okta, Inc.)

    Frankie -

    Did you receive our last post? What is your use case? What are you trying to achieve?

     

    Can you hep me understand what you mean by a normal user who cannot login with a desktop but wants to setup the app?

     

    Thanks.

     

    Evan Alter

    Technical Support Engineer

    Okta Global Customer Care
    Expand Post

  • j5v7c (j5v7c)

    Hi Evan,

     

    My situation is - when you have to set up the Okta Verify app, you need to first login your Okta on a desktop and then click "Set-up" at the profile settings. While my client is not able to do that and have the urge to enroll the device to Okta with the Secret Key. 

     

    I'm wonder if there's any chance to enroll a mobile device to Okta Verify App without logging in once at Okta from any other devices.
    Expand Post

  • j5v7c (j5v7c)

    Hi Frankie!

     

    It seems like you stumped the Okta wizards with this question.  (no offense to the Okta wizards, please do not smite me!)

     

    From what I have encountered within my own organization, there is no functionality that allows anyone besides the recipient of the "welcome aboard" email to configure multifactor on a device.  HOWEVER, if you (the presumed admin in this scenario) were to configure the user's account for them AND had access to their MFA device, you could configure their MFA, BUT you would need to do the entire on-boarding process for them as well.  This would include setting their login picture, password, and security question.  Is it possible to do this?  Yes.  Should you do this?  Absolutely not.  For one, it's more work for you, the already overworked admin.  For two, they would immediately need to reset all of their authentication methods to remain secure.  And finally, the sheer logistical nightmare of getting a user to give you their (presumed) phone while you set up their account, just to reset all of their authentication methods other than MFA.  It would be a severely time consuming process if done at scale, or worse yet, if the described user was at a remote location.

     

    The answer is relatively simple.  Tell the user, "In order to continue providing a secure authentication process, it is not possible for an Okta admin to configure your multifactor for you.  I apologize for the inconvenience."

     

    I hope you found this helpful, in spite of the time it took for me to provide you with an answer.
    Expand Post

  • rfuv8 (rfuv8)

    I updated to a new phone and when trying to sign into the app on my iphone it is asking for a secret key. I already have an account and cannot generate a secret key??

  • 4didp (4didp)

    Same problem with mine aswell. I formatted my phone and now it is asking for account name and secret key

     

This question is closed.
Loading
Generate Secret Key