Integrator Free Plan and Okta SDK and Password policy

Questions
1

Trying out the great??? Integrator Free Plan (For developers). Our current API code around 2+ years has code to set up different okta values that we need. One of those is a password policy. Now switching over to this Integrator free dev okta I’m getting the best error message in the world… (sarcasm)
Anybody in the world know what this means? We have set up a new User Group. now setting up the Password policy. One of the steps does link it to the new group. I don’t know if that is relevant. Anybody?

{“errorCode”:“E0000001”,“errorSummary”:“Api validation failed: conditions”,“errorLink”:“E0000001”,“errorId”:“oae_NSF_0mRS5eD2fsxjXZ3QQ”,“errorCauses”:[{“errorSummary”:“conditions: Property not allowed on condition: groups.exclude (people).”}]}

2

What does the payload of your API request look like?

The title mentions an Okta SDK. If you’re using one of our SDKs to make this request, which one are you using and what does your code look like?

3

Out of testing, seems like the error is related to assigning the policy to a group. If I don’t assign a group it works fine. Is that not allowed or did they update how to assign the password policy to a group. With out then everybody gets that policy.

Policy createNewPasswordPolicy =
          PasswordPolicyBuilder.instance()
              .setName(policyName)
              .setStatus(LifecycleStatus.ACTIVE)
              .setDescription(desc)
              .setAuthProvider(PasswordPolicyAuthenticationProviderType.OKTA)
              .setMinLowerCase(1)
              .setMinUpperCase(1)
              .setMinNumbers(1)
              .setExcludeUserNameInPassword(true) // username --which is the email address.
              .setExcludePasswordDictionary(true) // ??? Restrict use of common passwords in beta?
              .setPasswordHistoryCount(6)
              .setPasswordMaxAgeDays(365)
              .setPasswordExpireWarnDays(15)
              .setPasswordMaxAttempts(3)
              .setPasswordAutoUnlockMinutes(15)
              .setShowLockoutFailures(false)
              //.setGroups(otrEmngrGroup.getId()) // This is the line that causes the error
              .setPasswordPolicyRecoveryEmailStatus(recoveryFactorSettings)
              //.setPasswordRecoveryTokenLifeMinutes(60) // lowest is 60 -- This is making Security Questions required but why???
              .setPriority(1) // Make this the main policy. Defaults to 1.
              .buildAndCreate(oktaPolicyApi);