Scope(s) to use when authenticating, that control access to specific information. To specify multiple scopes, separate them with a space.

Syntax

Connect-Okta -Scope string

Data Type

cstr

Default Value

"offline_access okta.agentPools.read okta.apiTokens.read okta.apps.read okta.authenticators.read okta.authorizationServers.read okta.behaviors.read okta.brands.read okta.captchas.read okta.devices.read okta.domains.read okta.emailDomains.read okta.emailServers.read okta.groups.read okta.inlineHooks.read okta.oauthIntegrations.read okta.orgs.read okta.policies.read okta.profileMappings.read okta.realmAssignments.read okta.realms.read okta.roles.read okta.templates.read okta.logs.read okta.threatInsights.read okta.trustedOrigins.read okta.users.read okta.userTypes.read"

Remarks

The scopes that are used when authenticating enable you to request additional information that may be required for certain tables, or reduce permissions to prevent access to certain tables.

Requesting Additional Permissions

If you attempt to perform an action while using the cmdlet and Okta returns an insufficient permissions error, it may be due to a missing required scope. To resolve this issue, set the Scope property to include the required scope and generate a new OAuth access token for a desktop application.

For a list of all available Okta scopes, see https://developer.okta.com/docs/api/oauth2/.