<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Frequently Asked Questions on LDAP Agent Minimum Version Requirement
Mar 7, 2025
Okta Classic Engine
Directories
Okta Identity Engine

What is the change?

In Nov 2024, Okta released an LDAP agent that introduced new security improvements including adopting OIDC and Demonstrating Proof of Possession (DPoP). The updates to the LDAP agent secures the agent deployment and communication with Okta. This effort, a part of Okta’s Secure Identity Commitment, is aimed towards securing all Okta LDAP agents deployed by customers. Okta wants to ensure all Okta customers have at least upgraded their agents to an OIDC supported version (v5.22.0).

 

Okta has taken definitive steps to fight against identity based attacks as documented in Okta’s Secure Identity Commitment. Okta strongly recommends customers upgrade their LDAP agents to v5.22.0 or higher.

 

This includes investing in market-leading products and championing customer best practices for our 19,000+ customers.

 

As a part of this commitment, Okta has built and released key security improvements to our LDAP agent. The agent improvements make it secure to deploy and improve protection during agent to Okta communications. These changes were shipped as a part of Okta’s July 2024 Monthly release to the Okta LDAP Agent version 5.22.0.

  • Cryptographically bound tokens with OIDC and DPoP
  • Eliminate Okta Super Administrator dependency
  • Device-based registration flow for new LDAP agents

 

With these improvements, Okta recommends customers to upgrade to the latest agent version to secure your LDAP agent and its communication with Okta.

 

Okta also recommends customers deploy a process to regularly upgrade Okta LDAP agents. Features such as LDAP Agent Auto-update allow ease of upgrade either through an update schedule or through one-click updates via Okta Admin Console.  

 

How to upgrade to this new LDAP agent version?

 

Recommended content

Still looking for help?
Loading
Frequently Asked Questions on LDAP Agent Minimum Version Requirement