Bell SDOP
Self-Service Device Onboarding
Okta Authenticated
GV
Loading…
Welcome to SDOP
Sign in with your Bell Retail Okta account to continue.
bell-retail.okta.com
Bell Retail Organization
Dealer ID + period + user ID
Authorization via InfoNet + SiteMinder applied after login
Device Management
Register a Device
Enroll this device with Bell SDOP to establish cryptographic trust. Complete enrollment from the target device.
Authenticated As
Store Manager
Dealer Scope
Enrollment Type
Self-Service
● Low Risk
1
Device Check
2
Device Label
3
Certificate
4
Install
5
Okta Verify
6
Complete
Step 1 — Device State Evaluation
● Low Risk
🖥️
Windows 11 Pro detected
Payload: Signed PowerShell · LocalMachine cert store
Not this device?
🔒 You must complete enrollment on this device. The certificate will be generated for this machine only.
Step 2 — Name Your Device
Give this device a name so you can identify it in your inventory — useful if it's ever lost, stolen, or needs renewal.
Describe the device's location or role (max 48 characters)
🖥️
Enter a label above…
Store abc12 · Bell Mobility Laval · Windows 11 Pro
Step 3 — Certificate Generation
🔏
Generating your device certificate
SDOP is requesting a Bell-signed X.509 certificate from the Retail Intermediate CA.
Your private key is generated in volatile server memory and immediately destroyed.
Initializing…
Step 4 — Install Certificate
📦
SDOP_Installer_Windows.ps1
Signed PowerShell · installs Bell Retail CA + device cert into LocalMachine store
Single-use link Expires 5 min Signed by Bell Session-bound
Step 5 — Bind with Okta Verify
Okta Verify detects the Bell CA certificate in your OS trust store and activates Userless Device Signal (UDS) — enabling trust on shared devices.
Scan with
Okta Verify
Open Okta Verify on this device
Scan the QR or launch Okta Verify if already installed. The app detects the Bell certificate automatically and binds this device.
1
Open Okta Verify on this device
2
Tap Add Account → Organization
3
Enter bell-retail.okta.com
4
Approve the device binding prompt
⏳  Waiting for Okta Verify binding…
Device Successfully Registered
This device is now trusted by Bell SDOP. The Bell Retail CA is installed in your OS trust store. Okta Verify has activated UDS. Lifecycle state: ACTIVE.
Device Label
Lifecycle State
ACTIVE
Dealer
abc12 · Bell Mobility Laval
Enrolled By
Enrolled At
Certificate Expires
Okta Device ID
Enrollment Method
Self-Service · Phase 1
Device Management
My Devices
All devices registered under your dealer scope (abc12 · Bell Mobility Laval). You can suspend or revoke any device.
🔍
Device
OS
Status
Enrolled
Actions
Governance
Pending Approvals
✅ No pending approval requests for your dealer scope (abc12).
Account
My Profile
Identity Context
Select Operating System
⚠️ Manual selection is logged for audit. Only change if auto-detection is incorrect.
🖥️
Windows
Signed PowerShell · LocalMachine store · TPM 2.0 (Phase 2)
💻
macOS
Apple .mobileconfig · System Keychain · Secure Enclave
📱
iOS
Apple .mobileconfig · System Keychain · Secure Enclave
🤖
Android
PKCS#12 · QR password delivery · Hardware Keystore
Revoke Device
⚠️ Revoking permanently invalidates the device certificate and removes access. This cannot be undone.