<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
How to Decommission AD Agent and RADIUS from Okta Tenant and Servers
Oct 24, 2025
Okta Classic Engine
Directories
Okta Identity Engine
Overview

When decommissioning the AD agent and RADIUS completely, follow the recommended steps below to entirely uninstall or, if necessary, reinstall in the future. 

Applies To
  • AD Agents
  • RADIUS
  • Windows servers
Solution

AD Agent

  1. In Windows, select Start > Control Panel > Programs > Programs and Features.
  2. Select the Okta AD Agent, and then select Uninstall.
  3. To remove the agent configuration data from the hard drive on the agent server, go to C:\Program Files (x86)\Okta and delete the Okta AD Agent folder.
    • Deleting this folder removes the agent configuration data and the API token. The API token for the server remains valid in Okta, so it's important to remove the configuration data. Deleting this folder also removes all log records for the agent, which are stored in C:\Program Files (x86)\Okta\Okta AD Agent\logs. If access to the log records is needed afterwards, move these files to another location.
  4. To revoke the API token of an uninstalled agent:
    1. On the Okta Admin Console, click Directory > Directory Integrations.
    2. Click Active Directory and select the Agents tab.

Screenshot of UI with option to Deactivate agent

    1. Under Agent Monitors, click Deactivate Agent.
    2. Click Delete agent.

Screenshot of UI with option to Delete agent

NOTE: An API token will not be present if the AD agent version is 3.18 or later. OAuth 2.0 is now used instead. Please see AD Agent Changes Using OAuth 2.0. The above steps will still be needed to deactivate and/or delete the agents from the integration.

RADIUS

  1. On Windows computers where the agent is installed, select Start > Control Panel > Programs > Programs and Features.
  2. Select the Okta RADIUS Agent, and then select Uninstall.
  3. Uninstalling the RADIUS agent leaves the agent configuration data on the server's hard drive.
    • To remove the configuration data, navigate to \Program Files (x86)\Okta and delete the Okta RADIUS Agent folder. Deleting this folder removes the agent configuration data and the Okta API Token from the hard drive.
  4. Reboot the computer.

The API token for the server is still valid to Okta, so removing the configuration data is important.
 

Recommended content

Still looking for help?
Loading
How to Decommission AD Agent and RADIUS from Okta Tenant and Servers