Issues Authenticating with Okta SDK

chris.clewell · July 22, 2025, 5:55pm

Hello,
I am having issues authenticating with the Okta SDK API tooling. I have success using direct URL API but when I try to use the SDK Client Config, no dice. I am getting the below error:

Cannot connect to host openly.okta.com:443 ssl:True [SSLCertVerificationError: (1, '[SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: unable to get local issuer certificate (_ssl.c:1000)')]

My Client Config is:

config = {
    'orgUrl': OKTA_ORG_URL ("https://MY_ORG.okta.com"),
    'token': OKTA_API_TOKEN,
}

Any help would be amazing, I’ve hit a wall trying to use the SDK which would be much faster than building full urls for scripts

krishna · July 23, 2025, 12:23pm

The most likely culprit is that your firewall is blocking ports (Due to local certs
), specifically port 443, for that application. Check to ensure all necessary ports are allowed. See this https://stackoverflow.com/questions/51925384/unable-to-get-local-issuer-certificate-when-using-requests I don’t think it’s due to Okta, assuming your configuration is correct.

This uses python - albeit the issue should be similar https://stackoverflow.com/questions/77442172/ssl-certificate-verify-failed-certificate-verify-failed-unable-to-get-local-is

system · August 22, 2025, 12:24pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Post		Replies	Views
Could not create SSL/TLS secure channel (IDX10803) Questions dotnet	13	13637	October 11, 2018
Unable to obtain configuration from: 'https://<domain>oauth2/<appid>/.well-known/openid-configuration' Questions	4	6253	May 7, 2021
Certification error Questions	4	6573	February 8, 2024
OKTA Verifier failed to validate access token for specific authorization server OAuth/OIDC api , nodejs	2	5520	August 16, 2019
Python Okta SDK example not working Questions	2	6056	February 3, 2021

Issues Authenticating with Okta SDK

Related topics