<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z0000AHWE3VCQXOkta Identity EngineAdministrationAnswered2024-10-31T16:59:05.000Z2024-10-25T12:22:05.000Z2024-10-31T16:59:05.000Z

AndrewP.29619 (Customer) asked a question.

October 25, 2024 at 12:22 PM
Is it possible to see our user's application version?

Hello everyone,

 

My team and I were investigating the recent vulnerability announced here: https://trust.okta.com/security-advisories/okta-verify-for-ios-cve-2024-10327/

 

We wanted to know, is it possible to pull the user's application version to see who may be affected by this among our users?

 

I did find information referring back to an option for Android from awhile back (https://support.okta.com/help/s/article/How-to-generate-a-report-for-Okta-Verify-App-Version-412-and-below-for-Android-OS-Versions?language=en_US) but this doesn't seem to be working as expected for our purposes.

 

Any ideas or assistance would be greatly appreciated.

  • 1 answer
  • 324 views

  • User17157611498146715886 (Customer Support Online Community and Social Care)

    Hello @AndrewP.29619 (Customer)​ , thank you for contacting Okta Community.

     

    Yes, it is possible. I've taken your question to some of our colleagues who specialize in reporting and management functions. You can use this query in System logs:

    eventType eq "user.authentication.auth_via_mfa" and client.device eq "Mobile" and client.userAgent.os eq "iOS" and client.userAgent.rawUserAgent co "OktaDeviceSDK"

     

    If you are looking for one user in particular:

    eventType eq "user.authentication.auth_via_mfa" and client.device eq "Mobile" and client.userAgent.os eq "iOS" and actor.id eq "pasteheretheuserid"

    Paste the user id. Under RawUserAgent - 9.x.x Okta Device SDK is the OV version.

     

    If you are trying to generate a list for multiple users:

    eventType eq "user.authentication.auth_via_mfa" and client.device eq "Mobile" and client.userAgent.os eq "iOS"

     

    Regards.

    --

    Ask Us Anything about Workflows now thru 10/31

    Expand Post
    Selected as Best

  • User17157611498146715886 (Customer Support Online Community and Social Care)

    Hello @AndrewP.29619 (Customer)​ , thank you for contacting Okta Community.

     

    Yes, it is possible. I've taken your question to some of our colleagues who specialize in reporting and management functions. You can use this query in System logs:

    eventType eq "user.authentication.auth_via_mfa" and client.device eq "Mobile" and client.userAgent.os eq "iOS" and client.userAgent.rawUserAgent co "OktaDeviceSDK"

     

    If you are looking for one user in particular:

    eventType eq "user.authentication.auth_via_mfa" and client.device eq "Mobile" and client.userAgent.os eq "iOS" and actor.id eq "pasteheretheuserid"

    Paste the user id. Under RawUserAgent - 9.x.x Okta Device SDK is the OV version.

     

    If you are trying to generate a list for multiple users:

    eventType eq "user.authentication.auth_via_mfa" and client.device eq "Mobile" and client.userAgent.os eq "iOS"

     

    Regards.

    --

    Ask Us Anything about Workflows now thru 10/31

    Expand Post
    Selected as Best
This question is closed.
Loading
Is it possible to see our user's application version?