Okta Device Trust is a key component of Okta's Zero Trust security model. It ensures that users can only access applications from trusted devices — those that are both registered with Okta and managed through an endpoint management system. Device Trust combines endpoint management and Okta policies to enforce this access control, and is most commonly used to strengthen security for sensitive or high-risk applications.
Registered devices
A device becomes registered in Okta when a user installs the Okta Verify authenticator app and adds their Okta account to it.
If the user has never used Okta Verify, adding their account to the app enrolls Okta Verify as an authenticator in addition to registering the device.
If the user has used Okta Verify before, it's already enrolled as an authenticator. Adding their account to Okta Verify on a new device will simply register that new device with Okta.
In Okta and ZeroTek, the Devices area shows all users who have enrolled Okta Verify, along with their registered devices. Most devices will appear under a single user, but shared devices with multiple user profiles will list all associated users. You can manage registered devices directly in ZeroTek.
Benefits of registering devices
Visibility – See which devices are registered and access basic device details.
Enhanced security – Registered devices can use Okta FastPass, which allows Okta to communicate with the device's security software at sign-in, verify if the device is trusted, and evaluate security posture signals such as whether antivirus is running, whether the firewall is running, whether the OS is jailbroken or rooted, and whether the screen lock is disabled.
Foundation for Device Trust – Only registered devices can become managed devices, which are required to configure Okta Device Trust.
Managed devices
What is a managed device in Okta?
A managed device is both registered in Okta and managed through an endpoint or device management tool. These tools are variously categorized as Unified Endpoint Management (UEM), Mobile Device Management (MDM), Enterprise Mobility Management (EMM), or Mobile Application Management (MAM).
Using these platforms, organizations can typically:
Push policies to managed devices
Ensure only approved applications are installed
Require all necessary security tools and compliance configurations
Enforce encryption to protect locally stored credentials or data
Wipe devices remotely if lost or stolen
Okta is compatible with many endpoint management vendors. Learn more about Okta's endpoint security management solutions 
, or about about managed devices in Okta. 
What you can do with ZeroTek and Okta
Restrict access at the application level to registered and/or managed devices — Use Okta Device Trust to block access to sensitive apps from unmanaged BYOD endpoints. This helps prevent data leaks, malware and ransomware, and stolen session cookies.
Manage registered devices - The Devices area in ZeroTek lets you view and manage registered devices across the org.