Create Preauthorization

Create a preauthorization to allow a user to access an Advanced Server Access project. When pre-authorizations are enabled for a project, users are only allowed to access servers within a project if there is a valid, non-expired pre-authorization for their user associated with the project.

Earlier versions of the Advanced Server Access connector and the Create Preauthorization action card are no longer available. Existing flows that contain the Create Preauthorization action card will continue to run without interruption.

To add or replace a Create Preauthorization card in a new or existing flow, you must create a new Advanced Server Access connection and select the Create Pre-authorization action card from the Add app action dialog.

Input

Field Definition Type Required
Disabled

Indicates whether the pre-authorization is enabled when created.

Pre-authorizations that are in the Disabled state can later be enabled with the Update Pre-authorization action card.

Dropdown TRUE
Expires At Date and time when the preauthorization expires. Date & Time TRUE
User Name Advanced Server Access username of the user to whom the preauthorization applies. String TRUE
Project Name Advanced Server Access project for which the preauthorization is created. String TRUE

Output

Field Definition Type
Status Code Result of the operation. The HTTP status code is returned by the connector and indicates whether the action taken by the card succeeded or failed. For example:
  • A 201 Created status code indicates success where a new resource was created.
  • A 403 Forbidden error indicates that the HTTP request was not processed because the necessary permissions were missing.

For a full list of possible status codes, see HTTP status codes.

Number
Expires At Date and time when the preauthorization expires. Date & Time
Username Advanced Server Access username of the user to whom the preauthorization applies. String
Preauthorization ID Identifier for the preauthorization. Value can be used in other action cards or in calls to other APIs. String
Field Definition Type Required
Username Advanced Server Access username of the user to whom the preauthorization applies. String TRUE
Project Advanced Server Access project. String TRUE
Expires At Date and time when the preauthorization expires. Date & Time TRUE
Field Definition Type
ID Unique ID for the preauthorization. String
Username Username to which the preauthorization is assigned. String
Projects List of projects to which the preauthorization applies. List
Expires At Date and time when preauthorization expires. Date & Time
Disabled Indicates whether the preauthorization is disabled. Boolean

Related topics

Advanced Server Access connector

About the elements of Okta Workflows

Advanced Server Access API documentation