<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
0D54z00008E1SIwCANOkta Classic EngineMulti-Factor AuthenticationAnswered2026-06-14T09:00:28.000Z2022-10-12T17:55:10.000Z2022-10-13T16:15:14.000Z

hxx00 (hxx00) asked a question.

WebAuthn - Apple Touch Id

Hi, I'm testing WebAuthn for our org.

 

I was able to enroll apple Touch ID easily enough. What I discovered though is that when using the factor, I'm presented with the option 'Use Password...' instead of exclusively using touch ID. Our mac passwords are synced with Okta via jamf, so basically this amounts to users being able to login by entering their password twice. I hope that makes sense.

 

What I'm trying to figure out is if I can disable the option of letting the user enter their password and enforce the use of touch ID. Is that possible?

 


  • Hi @hxx00 (hxx00)​ , Thank you for reaching out to the Okta Community!

     

    I recommend checking the Known limitations section before doing any changes, but I think you are seeing this because User Verification under Authenticators → Okta Verify is set to "Preferred" instead of "Required"

     

    User verification 

    You'll also have to take into consideration how the policy might affect user that do not have biometric-enabled device, so definitely test the feature in a preview environment. 

     

     

    If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

     

    Hope my answer helps! 

    --------------------------------

    The Okta Community Catalysts Program is now live. Collect online badges when you participate in the Okta Help Center Questions community. Learn more here.

    Expand Post
This question is closed.
Loading
WebAuthn - Apple Touch Id