<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Can Specific IPs be Blocked via Okta API
Apr 4, 2025
Administration
Overview

This article aims to provide insights on how APIs can block specific IPs in Okta.

Applies To
  • Okta API
  • Network Zones 
  • Blocklist
Solution

The Okta Zones API can be used to configure a Network Zone inside the Okta tenant, blocking specific IPs or IP ranges.

To create a Network Zone, the following API call can be used: 

{yourOktaDomain}/api/v1/zones

{yourOktaDomain}/api/v1/zones

NOTE:

  • For an IP Network Zone, ensure to define either gateways or proxies.
  • For a Dynamic Network Zone, ensure to define at least one of the following: asnslocations, or proxyType.
  • For an Enhanced Dynamic Network Zone, ensure to define at least one of the following: asnslocations, or ipServiceCategories.
  • This operation can also be done from the Okta Admin Console by going to Security > Networks.


Related References

Recommended content

Documentation
IP exempt zone
Documentation
IP exempt zone
Knowledge Article
List Okta Suspended Users via API
Documentation
Blocklist network zones
Still looking for help?
Loading
Can Specific IPs be Blocked via Okta API