• Administration
• API

NOTE: The video and instructions below show how to create an SSWS API token for authentication. However, Okta recommends using scoped OAuth 2.0 and OIDC access tokens to authenticate with Okta management APIs. OAuth 2.0 and OIDC access tokens provide fine-grain control over the bearer's actions on specific endpoints. Whenever possible, Okta recommends using OAuth 2.0 and OIDC access tokens, as detailed in the How to Integrate Postman with Okta and Implement OAuth for Okta documentation.

Watch the video or review the steps below to create an API token:

1. Log in to the Okta Admin Console as an Admin with the permissions that the token should have.
   • NOTE: The API token will inherit the permissions of the Admin who creates it.
     • For example, if the token will be used for an API call that will add users to an Administrator role, the token must be created by a Super Administrator since only Super Admins can grant Admin permissions to other users.
     • Refer to the Learn about administrators or Standard administrator roles and permissions documentation for more information.
2. Go to Security > API.
3. Click Create Token.
4. Enter a name for the token.
5. Document the token value from the screen that appears.
   • NOTE: Document and store the API token value carefully. If unauthorized users access it, administrators cannot retrieve it later, presenting a security risk.

Related References

• How to Reset an Okta Verify Token
• Manage Okta API Tokens
• Standard administrator roles and permissions
• Implement OAuth for Okta
• How to Integrate Postman with Okta
• Revoke an API token