Directories Integration

Note: This API is only available if you're subscribed to Okta Identity Governance. Contact your Customer Success Manager or Account Executive for more information.

The Directories Integration API provides operations to manage Active Directory objects in a connected on-premises directory through Okta.

Update an Active Directory group membership
OAuth 2.0: okta.directories.groups.manage

Updates an Active Directory group membership directly in Active Directory

Request
path Parameters
appInstanceId
required
string

ID of the Active Directory app instance in Okta

Request Body schema: application/json
required
id
string

ID of the Active Directory group to update

object (Parameters)

Attributes used for processing Active Directory group membership update

action
string

The update action to take

Enum: Description
ADD

Add to the membership of the group

REMOVE

Remove from the membership of the group

attribute
string

The attribute that tracks group memberships in Active Directory. This should be member for Active Directory.

values
Array of strings

List of user IDs whose group memberships to update

Responses
200

OK

400

Bad Request

403

Forbidden

404

Not Found

502

There are no connected agents.

504

Timed out waiting for agent

post/api/v1/directories/{appInstanceId}/groups/modify
Request samples
application/json
{
  • "id": "string",
  • "parameters": {
    • "action": "ADD",
    • "attribute": "string",
    • "values": [
      ]
    }
}
Response samples
application/json
{
  • "errorCode": "E0000001",
  • "errorSummary": "Api validation failed: {0}",
  • "errorLink": "E0000001",
  • "errorId": "sampleiCF-8D5rLW6myqiPItW",
  • "errorCauses": [ ]
}