Follow

Setting Up Okta Multi-Factor Authentication

You will be prompted to set up Multi-Factor Authentication upon signing into https://franklincovey.okta.com on your computer. To receive your verification code you will be given a choice to use:

  • Okta Verify,
  • SMS (text message)
  • Google Authenticator

Upon selecting the method you would prefer, Okta will walk you through the setup process.

Recommendations:

  • Okta Verify is the easiest solution to use, as you can receive push notifications from the app and just select “Approve” or “Deny” when prompted for multi factor authentication.
  • SMS (text) is the quickest to set up as it requires no app download.
  • Both SMS and Google Authenticator will require that you enter the security code when prompted.

If you set up your verification method earlier and it now is no longer working you may need the helpdesk to reset your multifactor verification setup. To do so please:


Setting Up the Okta Verify App:

When you first log into Okta you will see a notification that extra verification is required for your account:

  1. Click the Setup button.
  2. Choose your device type (Apple, Android, or Windows Phone):

    The Windows option is for Windows Phones only, not for Windows computers.

    Make sure that you install the Okta Verify app, not the Okta app, as they are different things.

    Okta Verify App Downloads:

     

  3. Configure Okta Verify to link it to your Okta account. You can scan a QR code or manually enter the code.

  4. Scan the bar code that appears with your device.

 

If you have problems scanning the barcode, click on the "Problems scanning barcode?" link. You can then select to have an activation link sent to an email address, a cellphone via SMS; or to setup Okta Verify manually, without Push Authentication.

 

Signing in With Okta Verify

After successfully signing into Okta, the Okta Verify Authentication challenge screen appears.

Ensure you have access to your mobile device as you are prompted to verify by either:

  • Selecting Send Push to use push authentication. OR
  • Tapping the Okta Verify app on your mobile device and entering the one-time code into the Enter code field. If you opted to configure Okta Verify manually, you will only have the option to enter a code, not to push to your device.

If you opted for push authentication, you have two options:

  • Have a notification sent out to your device:

    Tap the Approve icon on your device to approve the verification request.

    You are signed into your account without any further action.

  • Use the automatic push option:

    Click the Send push automatically check-box.

    For this first instance, you are still required to click the Send Push button on the Okta Sign On page. After you've completed this initial verification, simply touching the Approve button from your mobile device signs you into Okta without further action.

 


Setting Up SMS Authentication:

To sign in, you must enter a security token that is sent to your mobile device.

Setting Up and Using SMS Authentication

  1. Click the Setup button beside Text Message Code.
  2. Enter the mobile phone number where you want your security tokens sent.
  3. Enter the security token number that was sent to your phone.

To reset and configure your settings if you lose your phone or get a new phone number, select the Account tab on your homepage and then click the Setup button in the Extra Verification section.

If you are configuring a user who already has a mobile telephone number verified in Okta, the following message appears.

 


 

Setting Up Google Authenticator:

To sign in, end-users must start the Google Authenticator app on their mobile device to generate a six-digit code they use to sign into your org. The numbers are generated using the industry standard Time-Based One-Time Password Algorithm. The allowable clock skew is two minutes. After five unsuccessful attempts, regardless of the time between the attempts, the user account is locked and must be reset by an administrator.

Using Google Authenticator

The first time users sign into their orgs after you configure this factor, they see the Extra verification is required for your account page and must perform the following steps:

  1. Click the Setup button.
  2. Select your mobile device, follow the instructions to download and install Google Authenticator, and then click Next.

Configure Google Authenticator to link it to your Okta account. You can scan a QR code or manually enter the code.

To scan a QR code

  1. On your phone, start Google Authenticator, tap the + icon, and then tap the Scan Barcode button.
  2. Scan the QR code on your computer screen using your phone camera.

The pass code generator screen appears and generates pass codes to use when prompted for extra verification. You have 30 seconds to enter the pass code before it generates a new one.

You can also configure an account manually by performing the following steps:

  1. On your phone, start Google Authenticator and tap the + icon.
  2. In the Account field, enter your Okta username (for example, john.doe@franklincovey.com). Okta includes "Okta" in the user name (Okta: john.doe@franklincovey.com), so that users can differentiate between Okta and other services that use Google Authenticator.
  3. On your computer, click the Can’t scan the QR code link so that you can access the secret key and enter it in the Key field.
  4. Click Done.

The pass code generator screen appears and generates pass codes to use when prompted for extra verification. You have 30 seconds to enter the pass code before it generates a new one.

Using the Google Authenticator App

After you install and configure Google Authenticator, click on the app and use the six-digit number to authenticate when prompted.

 


Reconfiguring Your Account

You can revoke your existing Okta Verify pass code and reconfigure your account at any time. You might need to do this if your phone is lost or stolen, or if you have a new phone and want to install the Okta Mobile app.

To reconfigure your account, perform these steps:

  1. Sign in to https://franklincovey.okta.com
  2. Select the Account tab.
  3. In the Extra Verification section, click the Setup button and follow the prompts to reconfigure your account.

 

If you are still unable to sign in or setup your multifactor authentication in Okta please:

 

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request

Comments

Powered by Zendesk