Worklet - Install Okta Device Trust on Windows

This worklet will install the Okta Device Trust app on Windows to ensure that devices authenticating to secure apps (like VPN) are owned and managed by your enterprise.

Make sure to grab the latest version of the Okta Device Trust app from your admin console. You can find it on the Downloads page under Settings or https://tenant.okta.com/admin/settings/downloads.

After downloading the latest version of the app, upload the installation file to the worklet. As of publishing this, the latest version is 1.3.1.0 but if a newer one exists, change the file name in the remediation code as well as the $oktataskversion variable in the evaluation code.

Evaluation Code


    ## Check to see if Okta Device Registration Task Is Installed ##

    # Program Name
    $oktaname = "Okta Device Registration Task "
    # Task Version Number
    $oktataskversion = "1.3.1.0";

    $program = $oktaname + $oktataskversion

    # Check Status

    $status = (Get-ItemProperty HKLM:\Software\Microsoft\Windows\CurrentVersion\Uninstall\* | Where { $_.DisplayName -eq $program })

    If(-Not $status) {
    	exit 0
    } else {
    	exit 1
    }

Remediation Code


    # Install Okta Device Registration Script

    # Enter your tenant name
    $tenant = "orgname"

    .\OktaDeviceRegistrationTaskSetup-1.3.1.exe /q2 OktaURL=https://$tenant.okta.com