In our organization, we have around 14 applications integrated with Okta. For instance, the Sales team uses Salesforce, which prompts MFA via Okta Verify push notifications. However, our financial tool completely bypasses Okta and uses TOTP through Google Authenticator instead. The Azure portal has its own MFA requirement due to recent changes, and our development tools utilize Duo because the vendor certified it that way a long time ago. This setup leaves our users juggling 3-4 different authenticator apps on their phones, and they often get locked out weekly since they forget which app corresponds to which service. Is this just the downside of using multiple vendors, or is there a definitive solution to consolidate all our authentication methods under one? We've attempted to route everything through Okta Verify, but some apps just refuse to cooperate.
3 Answers
It sounds like your Okta setup might not be configured properly. In our case, we use multiple applications but manage to integrate them all with Okta Verify or Google Authenticator seamlessly. It's worth checking with your admin to see if adjustments can be made or if you might be using a limited tier that doesn’t allow for proper MFA integration across all apps. Honestly, it can be super frustrating to deal with different authentication methods for every app!
What you need here isn’t just a technical fix; it’s a solid identity strategy. By unifying those apps behind a single Identity Provider (IdP), you can standardize your authentication methods. With only a handful of apps, it might be a good idea to tackle this sooner rather than later!
Exactly! Establishing a clear identity strategy will simplify the user experience and improve security at the same time.
It seems more like a need for an identity strategy rather than a technical troubleshooting session at this point. When merging systems, consider that most apps, regardless of how they suggest to implement MFA, usually have an alternative TOTP method if you dig a little.
I totally get that! We manage over 200 apps, and having them all on Okta Verify keeps things manageable. Make sure to communicate with whoever handles your Okta instance—it might just be a simple setting that needs checking.