Issue in configuring Okta API Scopes


I’m trying to implement a users creation module in my application that will call {api/v1/users} api endpoint of okta.
As far as I have studied the documentation, it says to use {api_key} for requesting {api/v1/users} endpoint. The other method to call this end point is to grant {okta.users.manage} scope in Okta API Scope inside the application and request the access token, then use that token to call {api/v1/users} endpoint and it will let you create/get all your current users in org.

As for the efficiency my requirement lies in the second option to grant Okta API Scope and use access token to call these endpoints but when i use this access token it gives {401 unauthorized} and {one or more scope is not configured to the application}, although i have granted access to {okta.users.manage &}.

Note: while working with {api_key} every endpoint works smoothly. I wanted the other way, an Access token way to create or list users.

authorization url :

url or api/vi/users:


You cannot use tokens issued by a custom authorization server (such as default) to request Okta API Scopes or use against the Okta API endpoints, as documented in our guide about OAuth for Okta. You must use the Org Authorization Server instead.

Thank you soo much. I have figured that out before and was unable to find this ticket page. Thank you again for your help. Now I’m having another issue about single sign on. should i create another ticket for it?

Yup, please create a new post to get assistance on your other issue so I can close this one out as solved.

Alright. I have posted another question for SSO. and marked your answer as the solution. Kindly have a look to the next topic i posted and guide me accordingly as soon as possible because I’m on a tough time deadline.
thank you

This topic was automatically closed 24 hours after the last reply. New replies are no longer allowed.