<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D54z0000AJQvMiCQLOkta Identity EngineIdentity GovernanceAnswered2026-02-26T09:00:23.000Z2025-02-06T12:13:53.000Z2025-02-28T17:32:29.000Z

gw3tl (gw3tl) asked a question.

February 6, 2025 at 12:13 PM
Agent Compatibility Details

Helo Team,

 

Could you please confirm if following Agents compatible with Windows Server 2022.

 

Okta AD Agent V 3.19.0

Okta AD Agent 3.13.0

Okta AD Agent 3.4.3

Okta AD Agent 3.4.10

OKTA Radius Agent 2.17.5

OKTA SSO Integrated Windows Authentication 1.12.3

Okta SSO Integrated Windows Authentication Web Application 1.15.0.0

 

 

Also, are we okay to upgrade OKTA AD Agent to V 3.19.0 from V 3.13.0/3.4.10/3.4.3.

 

Also, same for OKTA Radius Agent updated to latest version from V2.17.5.

  • 1 answer
  • 580 views

  • Mihai N. (Okta, Inc.)

    Hi @gw3tl (gw3tl)​ , Thank you for reaching out to the Okta Community! 

     

    Windows Server 2022 is an Okta supported platform. 

    The older agent version compatibility is no longer relevant. As part of Okta’s Secure Identity Commitment (OSIC), Okta released our most secure AD and LDAP agents yet. The new agents, released in July and Nov 2024, significantly improve security posture and make it difficult to remotely impersonate agents by adopting modern authentication standards like OIDC and Demonstrating Proof-of-Possession (DPoP).

     

    Starting on March 3, 2025, Okta will only allow AD agents with v3.18.0 or higher and LDAP agents with v5.22.0 or higher to communicate with Okta. Okta AD agents on versions older than 3.18.0 and Okta LDAP agents on versions older than 5.22.0 will be blocked from connecting to Okta. You can refer to these FAQs for more information on how to upgrade their AD and LDAP agents. 

     

    The new AD and LDAP agents secure agent communication with Okta using OIDC and DPoP tokens that are device-bound and frequently rotated. This secures customers against adversary-in-the-middle attacks by blocking token reuse. This agent update also eliminates the dependency to have an Okta Super Administrator for agents to run.

     

    We strongly recommend deploying a process to regularly upgrade Okta AD/ LDAP and other agents. Features such as AD Agent Auto-update and LDAP Agent Auto-update allow ease of upgrade either through an update schedule or through one-click updates via Okta Admin Console. 

     

    Note: Okta AD Agent v3.8 or lower and Okta LDAP Agent v5.16 or lower will not be able to use the Agent Auto-update feature and you will need to manually update the agents. After updating to the latest agent versions, you will be able to leverage the auto update feature.

     

    If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

     

    Hope my answer helps! 

     

    --

    Help others in the community by liking or hitting Select as Best if this response helped you.

    Expand Post
    Selected as Best

  • Mihai N. (Okta, Inc.)

    Hi @gw3tl (gw3tl)​ , Thank you for reaching out to the Okta Community! 

     

    Windows Server 2022 is an Okta supported platform. 

    The older agent version compatibility is no longer relevant. As part of Okta’s Secure Identity Commitment (OSIC), Okta released our most secure AD and LDAP agents yet. The new agents, released in July and Nov 2024, significantly improve security posture and make it difficult to remotely impersonate agents by adopting modern authentication standards like OIDC and Demonstrating Proof-of-Possession (DPoP).

     

    Starting on March 3, 2025, Okta will only allow AD agents with v3.18.0 or higher and LDAP agents with v5.22.0 or higher to communicate with Okta. Okta AD agents on versions older than 3.18.0 and Okta LDAP agents on versions older than 5.22.0 will be blocked from connecting to Okta. You can refer to these FAQs for more information on how to upgrade their AD and LDAP agents. 

     

    The new AD and LDAP agents secure agent communication with Okta using OIDC and DPoP tokens that are device-bound and frequently rotated. This secures customers against adversary-in-the-middle attacks by blocking token reuse. This agent update also eliminates the dependency to have an Okta Super Administrator for agents to run.

     

    We strongly recommend deploying a process to regularly upgrade Okta AD/ LDAP and other agents. Features such as AD Agent Auto-update and LDAP Agent Auto-update allow ease of upgrade either through an update schedule or through one-click updates via Okta Admin Console. 

     

    Note: Okta AD Agent v3.8 or lower and Okta LDAP Agent v5.16 or lower will not be able to use the Agent Auto-update feature and you will need to manually update the agents. After updating to the latest agent versions, you will be able to leverage the auto update feature.

     

    If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you. 

     

    Hope my answer helps! 

     

    --

    Help others in the community by liking or hitting Select as Best if this response helped you.

    Expand Post
    Selected as Best
This question is closed.
Loading
Agent Compatibility Details