> ## Documentation Index
> Fetch the complete documentation index at: https://docs.parable.work/llms.txt
> Use this file to discover all available pages before exploring further.

# API Token

> Connect Parable to Okta using an SSWS API token

export const platform_1 = "Okta"

export const limit_0 = "varies by endpoint; typically 100-1000 requests/minute"

export const platform_0 = "Okta"

export const role_0 = undefined

export const tokenName_0 = "API token"

<Tabs>
  <Tab title="Setup">
    <Card title="What You'll Need" icon="key">
      | Credential    | What it is                             |
      | ------------- | -------------------------------------- |
      | **API Token** | SSWS token from Okta admin console     |
      | **Domain**    | Your Okta subdomain (e.g., `your-org`) |
    </Card>

    ## Overview

    Connect Parable to Okta for identity, access management, and audit log data.

    <CardGroup cols={2}>
      <Card title="Identity" icon="id-badge">
        Users, groups, profiles
      </Card>

      <Card title="Security" icon="shield">
        Audit logs, system events
      </Card>
    </CardGroup>

    ## Prerequisites

    <Info>
      **Setup access in {platform_0}.** These steps require **{role_0}**, or a colleague with equivalent permissions who can create credentials for you.

      If that is not you, ask your {platform_0} administrator.
    </Info>

    * **Super Administrator** or **Organization Administrator** role
    * Permission to create API tokens

    ## Setup Guide

    <Steps>
      <Step title="Access Okta Admin Console">
        1. Log in to your Okta org
        2. Go to the Admin Console (click **Admin** in the top right)
      </Step>

      <Step title="Navigate to API Settings">
        1. Go to **Security** → **API**
        2. Click the **Tokens** tab
      </Step>

      <Step title="Create API Token">
        1. Click **Create Token**
        2. Name: `Parable Integration`
        3. Click **Create Token**

        <Warning>
          **Copy your {tokenName_0} now!**

          This is the only time it will be displayed. Store it in a secure password manager before closing this page.
        </Warning>

        <Warning>
          Token inherits the creating admin's permissions. Use a dedicated admin account.
        </Warning>
      </Step>

      <Step title="Note Your Okta Domain">
        Your Okta domain format:

        ```
        https://your-org.okta.com
        ```

        Or for Okta preview:

        ```
        https://your-org.oktapreview.com
        ```
      </Step>

      <Step title="Enter values in the form">
        1. **Domain**: Your Okta org hostname (for example `your-org.okta.com` without `https://`).
        2. **API Token**: Paste your SSWS API token.
        3. Click **Save & test connection**.
      </Step>
    </Steps>
  </Tab>

  <Tab title="Reference">
    ## Verify Your Setup

    <CodeGroup>
      ```bash Test Authentication theme={null}
      curl -H "Authorization: SSWS YOUR_TOKEN" \
        "https://your-org.okta.com/api/v1/users/me"
      ```

      ```bash List Users theme={null}
      curl -H "Authorization: SSWS YOUR_TOKEN" \
        "https://your-org.okta.com/api/v1/users?limit=5"
      ```
    </CodeGroup>

    <Check>
      **Success!** If you received a `200 OK` response with valid data, your credentials are configured correctly. You can now proceed to configure this connector in Parable.
    </Check>

    ## API Endpoints Reference

    | Endpoint         | Data                    |
    | ---------------- | ----------------------- |
    | `/api/v1/users`  | User profiles           |
    | `/api/v1/groups` | Groups and membership   |
    | `/api/v1/logs`   | System audit logs       |
    | `/api/v1/apps`   | Application assignments |

    <Tip>
      **Rate Limits:** {platform_1} enforces rate limits of **{limit_0}**.

      Parable handles rate limiting automatically with exponential backoff, but initial syncs of large datasets may take longer due to these limits.
    </Tip>

    ## Troubleshooting

    | Error      | Meaning             | Solution                                         |
    | ---------- | ------------------- | ------------------------------------------------ |
    | `E0000011` | Invalid token       | Verify token is correct                          |
    | `E0000006` | Access denied       | Verify token has required admin permissions      |
    | `E0000015` | Feature not enabled | Check required Okta features/licenses are active |
    | `429`      | Rate limit          | Implement backoff                                |

    <Accordion title="Common Issues">
      ### Token created by deactivated user

      If the admin who created the token is deactivated, the token becomes invalid. Create a new token with an active admin account.

      ### Can't access logs

      System Log access requires Super Administrator or Report Administrator role.
    </Accordion>

    ## Additional Resources

    <CardGroup cols={2}>
      <Card title="Okta API" icon="book" href="https://developer.okta.com/docs/reference/">
        Official API reference
      </Card>

      <Card title="Rate Limits" icon="gauge" href="https://developer.okta.com/docs/reference/rate-limits/">
        Rate limit documentation
      </Card>
    </CardGroup>
  </Tab>
</Tabs>