<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Add okta.myAccount.* Reserved Scopes to a Custom Authorization Server
Oct 8, 2025
API Access Management
Okta Classic Engine
Okta Identity Engine
Overview

Before July 2024, Okta displayed okta.myAccount.* scopes within a Custom Authorization Server's Scope page by default. However, as of July they will need to be added manually in the Scope table.

Applies To
  • Custom Authorization Server
  • API Access Management
Cause

okta.myAccount.* scopes do not show up in the Scopes tab for a Custom Authorization Server.

test scope

Solution

All scopes documented in MyAccount Management need to be manually added by going to Security > API. Then, after selecting the Custom Authorization Server, select the Scopes tab, and then add a scope by:

  1. Click the Add Scope Button.

test scopes

  1. Add one of the okta.myAccount.* scopes and click Create

Add scope

  1. The scope will be added at the top of the table.

test scope

NOTE: Okta also reserves the okta.* namespace, so arbitrary scopes with okta.* cannot be created. Only the ones listed in the above link are permitted.

Recommended content

Still looking for help?
Loading
Add okta.myAccount.* Reserved Scopes to a Custom Authorization Server