Attack Protection

The Attack Protection API provides operations to configure the User Lockout Settings in your org to prevent brute-force attacks.

Retrieve the User Lockout Settings
OAuth 2.0: okta.orgs.read

Retrieves the User Lockout Settings for an org

Responses
200

OK

403

Forbidden

429

Too Many Requests

get/attack-protection/api/v1/user-lockout-settings
Request samples 
Response samples 
application/json
[
  • {
    • "preventBruteForceLockoutFromUnknownDevices": true
    }
]
Replace the User Lockout Settings
OAuth 2.0: okta.orgs.manage
Replaces the User Lockout Settings for an org


Request 
Request Body schema: application/json
preventBruteForceLockoutFromUnknownDevices
boolean
Prevents brute-force lockout from unknown devices for the password authenticator.


 
Responses 
200
OK


400
Bad Request


403
Forbidden


429
Too Many Requests


put/attack-protection/api/v1/user-lockout-settings
Request samples 
application/json
{
  • "preventBruteForceLockoutFromUnknownDevices": true
}
Response samples 
application/json
{
  • "preventBruteForceLockoutFromUnknownDevices": true
}