4bu54 (4bu54) asked a question.
We are trying to increase adoption of security key authenticators for staff and are looking to streamline the process for end users by allowing them to navigate directly to the authenticator set up portal rather than having to access this through settings.
However it seems that the url for the enrollment page contains a token which is generated by Okta. Is there anyway we would be able to generate this token dynamically for our users on navigation or otherwise provide a more streamlined process for security key enrollment which doesn't involve navigating though the settings page.
Thank you.
(Side note, a display which shows information other than just the name of the factor - e.g. device serial - for in the 'Security Methods' section of the settings page would be helpful for users who are migrating mobile or computer devices and need to remove the old device.)
Hello @4bu54 (4bu54) , thank you for contacting Okta Community.
I believe the issue could be solved much simpler. When you set up a factor, you can choose between "disabled", "optional", and "required". If you want people to have a certain factor enrolled, you can set up the factor as "required". Then, you can apply this to a group and/or an app. The following articles go into more detail about this option:
Configure an MFA enrollment policy
Set required factors for MFA enrollment policies
Set required authenticators for MFA enrollment policies
Regarding your side note, if you have a paid account, you can suggest new features on the Okta Community page by going to the Community→ Ideas tab. Features suggested in our community are reviewed and can be voted on and commented on by other members. High popularity will increase the likelihood of it being picked up by the Product Team and implemented.
You can find more details here.
Regards.
—
Help others in the community by liking or hitting Select as Best if this response helped you.