Creating SSWS token/ API token which will have customised permissions

Had this question regarding creating a SSWS token also known as API token which is used to authenticate the call for the okta-management-apis.
The token can only be created using super-admin role
My requirement was to create a API token which would have only customised permissions of IDP.
In any resource set and custom role permission I didn’t see the IDP Permissions
For this I referred below document
Okta Help Center (Lightning) .
This didn’t work though.
can anyone show me the right way to do this?