-
+
+
@@ -376,8 +398,6 @@
Related topics
-
+
+
@@ -340,8 +362,6 @@
Delete a
-
+
+
@@ -342,8 +364,6 @@
Related topics
-
+
+
@@ -356,8 +378,6 @@
Related topics
-
+
+
@@ -340,8 +362,6 @@
Related topic
-
+
+
@@ -368,8 +390,6 @@
Related topics
-
+
+
@@ -370,8 +392,6 @@
Topics
-
+
+
@@ -356,8 +378,6 @@
Topics
-
+
+
@@ -382,8 +404,6 @@
Related topics
-
+
+
@@ -342,8 +364,6 @@
Configure Okta ThreatInsight system log events
-
+
+
@@ -346,8 +368,6 @@
Before you begin
-
+
+
@@ -340,8 +362,6 @@
Before you begin
-
+
+
@@ -332,8 +354,6 @@
HealthInsight Reporting on Okta ThreatInsight
-
+
+
@@ -339,8 +361,6 @@
Topics
-
+
+
@@ -340,8 +362,6 @@
Okta Admin Console
-
+
+
@@ -349,8 +371,6 @@
Topics
-
+
+
@@ -349,8 +371,6 @@
Related topics
-
+
+
@@ -475,8 +497,6 @@
Authenticator overview
-
+
+
@@ -357,8 +379,6 @@
Related topics
-
+
+
@@ -360,8 +382,6 @@
Related topics
-
+
+
@@ -338,8 +360,6 @@
Related topics
-
+
+
@@ -382,8 +404,6 @@
Related topics
-
+
+
@@ -415,8 +437,6 @@
Related topics
-
+
+
@@ -363,8 +385,6 @@
Next step
-
+
+
@@ -363,8 +385,6 @@
Next step
-
+
+
@@ -361,8 +383,6 @@
Related topic
-
+
+
@@ -399,8 +421,6 @@
Related topic
-
+
+
@@ -414,8 +436,6 @@
Next step
-
+
+
@@ -347,8 +369,6 @@
Topics
-
+
+
@@ -342,8 +364,6 @@
Next step
-
+
+
@@ -339,8 +361,6 @@
Topics
-
+
+
@@ -535,8 +557,6 @@
Related topics
-
+
+
@@ -270,15 +292,21 @@
-
Administer devices
-
You can administer the registered devices in your org through the Devices page.
-
Topics
+
Configure a Certificate Authority
+
When evaluating an app sign-on policy that requires devices to be managed, Okta determines the management status of your targeted Windows devices by verifying whether a client certificate is installed on the device. Okta attests certificate installation by creating a digital signature with the certificate and validating it on the server. Configuring a Certificate Authority (CA) allows you to issue client certificates to devices to support this operation.
+
Configure Okta as a CA
+
Using Okta's default CA saves time, streamlines the issuance of certificates and allows you to avoid the complexity and expense of deploying and maintaining your own PKI infrastructure.
+
To configure Okta as a CA, you will create a SCEP profile in your MDM and generate a SCEP URL in Okta.
+
Provide your own CA
+
To provide your own CA, your environment requires a PKI infrastructure that is integrated with your MDM solution to distribute Okta-provided client certificates to targeted devices. See Provide your own Certificate Authority for Device Trust on Identity engine.
Top
@@ -332,8 +360,6 @@
Topics
-
+
+
@@ -291,8 +313,7 @@
How device registration works
Related topics
@@ -349,8 +370,6 @@
Related topics
-
+
+
@@ -270,7 +292,7 @@
-
Devices in Identity engine
+
Device administration
Okta Devices is a Platform Service of the Okta Identity Cloud that embeds Okta on every device to give organizations:
- Visibility into the devices accessing Okta
@@ -283,9 +305,9 @@ Topics
@@ -341,8 +363,6 @@
Topics
-
+
+
@@ -563,8 +585,6 @@
Related topics
-
+
+
@@ -346,8 +368,6 @@
Topics
-
+
+
@@ -344,8 +366,6 @@
Related topics
-
+
+
@@ -375,8 +397,6 @@
Operating system
-
+
+
@@ -363,8 +385,6 @@
Related topics
-
+
+
@@ -338,8 +360,6 @@
Where can I learn more about
-
+
+
@@ -332,8 +354,6 @@
Topics
-
+
+
@@ -468,8 +490,6 @@
Windows Security Center value definitions
-
+
+
@@ -438,8 +460,6 @@
Related topics
-
+
+
@@ -339,8 +361,6 @@
Related topics
-
+
+
@@ -275,7 +297,6 @@
Integrate
You can integrate Okta Verify with your organization’s Endpoint Detection and Response (EDR) solution. When users try to access a protected resource, Okta Verify probes their device for context and trust signals and uses these to inform the access decision. EDR integration extends device posture evaluation by enabling Okta Verify to capture signals collected by your EDR client running on the same device. All signals are then sent to the Okta server and evaluated against the app sign-on policies that you have configured in the Okta Admin Console.
Okta currently supports integrations with CrowdStrike and Microsoft Windows Security Center. Support for more EDR vendors is planned for the future.
- See Event Types
Topics
-
+
+
@@ -336,8 +358,6 @@
Limitation
-
+
+
@@ -420,8 +442,6 @@
Next step
-
+
+
@@ -938,8 +960,6 @@
Related topics
-
+
+
@@ -276,7 +298,10 @@
Manage device lifecycle
-
With the exception of Created, you can change the following device lifecycle states:
+
+
+
+
You can change the following device lifecycle states: