Reconfigure an Okta LDAP agent

To change an Okta LDAPLightweight Directory Access Protocol (LDAP) is a lightweight client-server protocol for accessing directory services, specifically X.500-based directory services. LDAP runs over TCP/IP or other connection oriented transfer services. agentA software agent is a lightweight program that runs as a service outside of Okta. It is typically installed behind a firewall and allows Okta to tunnel communication between an on-premises service and Okta's cloud service. Okta employs several agent types: Active Directory, LDAP, RADIUS, RSA, Active Directory Password Sync, and IWA. For example, users can install multiple Active Directory agents to ensure that the integration is robust and highly available across geographic locations. configuration, choose the appropriate method for your platform.


Uninstall and then reinstall the agent, and then specify new configuration settings during setup. See Uninstall or re-install the Okta LDAP agent.


  1. Open a command prompt and use this command to run an update script:


  1. Issue any of the following commands:
Command Definition Example
[-b] ldap.dn.base NewBaseDN
[-a] ldap.adminAn abbreviation of administrator. This is the individual(s) who have access to the Okta Administrator Dashboard. They control the provisioning and deprovisioning of end users, the assigning of apps, the resetting of passwords, and the overall end user experience. Only administrators have the Administration button on the upper right side of the My Applications page..dn NewLDAPAdminDN
[-w] ldap.admin.password NewLDAPPassword
[-h] NewLDAPHost
[-p] ldap.port NewLDAPPort

You can combine parameters. For example:

/opt/Okta/OktaLDAPAgent/scripts/ -h -p 389