00u9nfepem4GZAJP10h71.548350184896657E12 (Customer) asked a question.
Can't Clone AuthN Policy via API due to invalid session error
I'm trying to clone an authentication policy using the Policies API but I get 403-Forbidden with error code E0000005 and error message "Invalid session". I'm using a service app in Okta with OAuth2 bearer tokens rather than API Key. This client app has the App Admin role and has been granted the oauth.policies.manage scope. I can send GET requests for policies, I can create a policy, I can add rules to a policy. Only clone is not working. Is there something else I'm missing for clone?
Thanks
Hi @00u9nfepem4GZAJP10h71.548350184896657E12 (Customer) , Thank you for reaching out to the Okta Community!
I was unable to locate any similar reports or any indication/documentation that this would require any special permission to be performed via API.
If you have an account with us, I recommend opening a case to have my colleagues from the Support Team look into this and confirm if this is a limitation of the API or something else is amiss. They'll be able to access additional tools and resources to help you get to the bottom of it.
Regards.
--
Ask Us Anything thru 7/14: Okta WIC leadership want to hear from you
Hi @00u9nfepem4GZAJP10h71.548350184896657E12 (Customer), you will need to enable the following early access feature under Settings > Feature > Early access for clone policy api to work with oauth tokens. It may seem odd why this feature needs to be enabled but this feature enables the code path that is required for clone policy api to function properly with client credential token flow. Hope this helps.