Okta MFA intune enrollment

Hi guy,

My first topic to this forum, wondering if I could get some assistance.

We are switching to Intunes MDM, we have OKTA MFA currently enforced which means users will be logging into Office365 and challenged for MFA.

Now my issue is when we enroll a device it automatically prompts for Organisation email which you put in then takes you into the OKTA verify screen, now if this is a new user a mobile phone out of the box how do we remove first challenge of MFA.

Thanks any help will assist.