Using Provider type FEDERATION with API

greekhero · January 27, 2025, 9:29am

Hello, I need to create users without password that would rely on Federation for authentication. I found that if I did the credentials block in api payload, I can set Provider type to FEDERATION which should do it?

“credentials”: {
- “provider”: {
  - “type”: “OKTA”, <—- change this to FEDERATION?
  - “name”: “OKTA”}},

Can someone confirm this please? Also, what is the default value if I don’t provide credentials block with provider type? Is it set to OKTA as in the documentation?

Thank you!

krishna · January 28, 2025, 8:34am

The suggested approach is to hit the RESET password flow API
https://support.okta.com/help/s/article/How-to-convert-Okta-user-to-Federated-provider-type?language=en_US

POST /api/v1/users/<USER_ID>/lifecycle/reset_password?provider=FEDERATION&sendEmail=false

Note that Federation users can also be converted back if required.

system · February 27, 2025, 8:34am

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Post		Replies	Views
How to change AuthenticationProviderType of an existing User in Okta? Questions	1	2525	February 12, 2024
Learning about how to implement Org2Org Questions	1	4046	January 27, 2024
Passwordless user Questions idp	2	1252	March 20, 2024
User authorization via service Questions	11	4525	February 8, 2024
Application allowed grant types: Client Credentials Questions	4	6864	August 14, 2019

Using Provider type FEDERATION with API

Related topics