Factors API - API Token Permissions?

nathan.walker · June 21, 2021, 2:26pm

The admin matrix does not make it clear what permissions an account needs to use the Factors API.

We have a use case where a third-party application will challenge a user’s MFA and validate the response before allowing them access to internal resources. We have validated that the use case works when using a API token created by a super user account, but we want to use the least permissive API token permission set possible.

okra-okta · June 22, 2021, 4:45pm

According to the doc, it looks like you need either Org admin or Super admin permissions to use the Factors API.

nathan.walker · June 22, 2021, 6:26pm

Update - I did some manual testing, and it looks like you can get away with using a Read Only Admin API Token.

system · June 23, 2021, 6:26pm

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.