Okta Verify Device Trust macOS Setup Guide

Vendor Docs - macOS Setup Vendor Docs - FAQ and Troubleshooting

Overview

Note: Occasionally after a macOS version update, Okta Verify will need to be set up again. Following these steps will resolve the issue.

  1. Open the Okta Verify application on macOS via Spotlight by selecting the magnifying glass in the menu bar (top right corner of display). Another method to open Spotlight is to use cmd + Space Spotlight Search

  2. Search for Okta Verify Okta Verify Search

  3. Select Get Started Get Started

  4. Select Next Get Started-Next

  5. Confirm gitlab.okta.com is populated for Sign-in URL and then select Next Sign-in URL

  6. A browser window will open to gitlab.okta.com to confirm your identity Identity

  7. After doing so, you will see the Your Identity is Verified message and you can close the browser Identity Success

  8. The Okta Verify application will refresh. Press Next if you are using Touch ID on your Mac (most common), or Skip if you are not. Okta Verify uses macOS’s Touch ID capability, and the mathematical calculation is stored locally within Apple’s Secure Enclave and not available to Okta or GitLab. Touch ID Prompt

  9. If you pressed Next, then click Enable Touch ID Touch ID Prompt 2

  10. Your GitLab Okta account will now be available to use with Okta Verify on macOS Okta Verify Complete

After enrolling

You will continue to be able to use a YubiKey in addition to Touch ID to login to Okta from macOS device. You will not be able to login from a personal macOS device.

A macOS device missing the certificate (even when enrolled with Okta Verify), will quickly show: No Certificate

Then re-direct to the following error: No Certificate 2

Last modified March 5, 2025: Fix broken links (2feb413c)
View page source - Edit this page - please contribute. Creative Commons License