Introduction
In the latest Early Access Release (9.8.0) of Okta Verify for macOS Okta now also supports
Push notification (Number challenge) for macOS Okta Device Access Desktop MFA.
Check here the full release notes.
Users can choose whether to include a number challenge with an
Okta Verify push notification.
The number challenge verifies that a sign-in attempt to an app protected by Okta came from the intended user and not from an unauthorized person.
It presents a number in the Sign-In Widget and pushes a notification to Okta Verify on the user’s mobile device.
Requirements
- Okta Device Access Desktop MFA for macOS configured/deployed
A macOS step-by-step guide can be found here - macOS Okta Verify Release 9.8.0 deployed (Preview deployment)
- Push notification number challenge for Okta Verify configured
Configure Okta Verify Number Challenge
In the Okta Admin Console navigate to Security –> Authenticators
On the Okta Verify line, click Actions –> Edit
Within the Okta Verify menu, scroll down to the Push notification: number challenge and configure and configure it according to your needs/requirements.
In my setup I’ve configured All push challenges, that means the user users receive
a number challenge with all Okta Verify push notifications regardless of risk level.
More information about the various settings can be found here.
Sign in overview
Log in to your macOS device with your username and passoword.
Okta Device Access Desktops MFA kicks in, so select here the Okta Verify push option
Press the Send push button on the macOS Device to receive the Push Notification
on your mobile device.
Now you see a number in the Sign-In screen on your macOS device and a Okta Verify push notification is sent to the user’s mobile device.
The user selects the number that matches what they see in the Sign-In screen.
Demo – macOS Number Challenge
Now let’s have a look how this is looking like in a short demo, enjoy! 🙂
IAMSE