This article describes how to create a Read Only API Key for SharePoint People Picker.

• SharePoint People Picker
• Administrators
• API Token

The Configure Okta SharePoint People Picker Agent documentation mentions creating a Read Only API Token during prerequisite steps:
 

However, the above documentation does not refer directly to those steps. 
Please follow the below video or steps: 



To create a Read Only API Token:

1. Sign in to the Okta organization as a user with administrator privileges.
   API tokens have the same permissions as the user who creates them, and if the user permissions change, the API token permissions also change.
   It is recommended to create a Service Account and assign the specific permissions required for the task, in this instance a "Read Only Admin".

2. Access the API page:

   1. If using the Developer Console, select Tokens from the API menu.

   2. If using the Administrator Console (Classic UI), select API from the Security menu and then select Tokens.

3. Click Create Token.

4. Name the token and click Create Token.

5. Record the token value. This is the only opportunity to see it and record it.