Okta API call to Request or Refresh Okta API Token

Loading

Skip to Navigation Skip to Main Content

Search

Search

Select Language

0D51Y00006yQP1zSAGOkta Classic EngineOkta Integration NetworkAnswered2024-04-16T13:48:28.000Z2019-11-06T23:27:57.000Z2019-11-09T03:05:07.000Z

00u4g3z04rrwGkVWa2p71.562550329560332E12 (Customer) asked a question.

November 6, 2019 at 11:27 PM

Okta API call to Request or Refresh Okta API Token

We are going to be running system using the Okta API that need to be fully automated and run over a period of many months. Currently the manual created Okta API tokens issued are likely to expire a few times during this period.

To ensure our systems do not stop running when the manually issued API token expires can I would like to use the Okta API to request or refresh the Okta API token?

I would expect this would follow the process of OpenId+OAuth User Token being sent to obtain the new sever OAuth Token.

So far I haven't been able to find documentation describing how to do this with Okta.

Can anyone point me in the right direction?

Top Rated Answers

00usezlqsHdQlhvV9351.5615771738102039E12 (Customer)
7 years ago
Unfortunately there is no way to get a new API key via an api call. If you want to ensure it doesn't expire you can just script a call to keep it alive every 29 days. Not elegant and something we're running into as well.

They did just release Okta API for Oauth early access.

https://developer.okta.com/docs/guides/oauth-for-okta/overview/

Long term this is what you'll want to use.
Expand Post
Selected as Best

All Answers

00usezlqsHdQlhvV9351.5615771738102039E12 (Customer)
7 years ago
Unfortunately there is no way to get a new API key via an api call. If you want to ensure it doesn't expire you can just script a call to keep it alive every 29 days. Not elegant and something we're running into as well.

They did just release Okta API for Oauth early access.

https://developer.okta.com/docs/guides/oauth-for-okta/overview/

Long term this is what you'll want to use.
Expand Post
Selected as Best
8n9yw (8n9yw)
Edited November 7, 2019 at 8:54 PM
easy answer...don't over think it... make a scheduled task to simply use the token to auth to okta every 25 days
we do this for all our automation tokens just to make sure they don't expire. to be clear if they are used 1 time every 30 days they don't expire.
Expand Post
00u4g3z04rrwGkVWa2p71.562550329560332E12 (Customer)
7 years ago
Thanks Joe,
I think that should be good enough for what we're doing for now. Our main usage is unlikely to result in 30 days passing without a call being made and a scheduled task doing a health check ping should fit nicely into the design.

Expand Post

This question is closed.

Recommended content

Forum

Calls to Okta Users API using OAuth2.0 from a Spring Boot application, with refresh token

Forum

Hi, my team is writing code for making refresh tokens available to users. Is there any API that will return a customer friendly id along with the created refresh token ? Something that a user can easily remember ? thanks

Forum

"Invalid token provided" error, when making a call to the Okta API with Postman or curl using a token created by a super admin of a trial account

Forum

How to Limit number of calls/request from API token

Loading

Okta API call to Request or Refresh Okta API Token