yc954 (yc954) asked a question.
OKTA Verify - Trusted Device and MFA Bypass
We are integrating OKTA Verify into our platform and need clarification on the following points:
How does the OKTA Verify app enable a device to be marked as trusted. Any information needs to be sent in the OKTA login API to indicate that the device is trusted and avoid MFA prompts for subsequent logins
Any insights or best practices on managing trusted devices and optimizing MFA flow would be greatly appreciated. Thanks in advance
Hello @yc954 (yc954) , thank you for contacting Okta Community.
The verification is based on a Device Trust certificate. You can read more about it here:
Okta Device Trust solutions - the main article from which you can choose a client-based or SAML-based solution, each with specific instructions
Setting Up Desktop Device Trust in Okta OIE: A Guide for Those who Have It Implemented in Okta Classic - this article shows you how to check logs to ensure the integration works
Regards.
--
Help others in the community by liking or hitting Select as Best if this response helped you.