// MCP TOOL REFERENCE

OKTA MCP SERVER TOOLS

21 tools from the Okta MCP Server MCP Server, categorised by risk level.

View the Okta MCP Server policy →
// ALL 21 OKTA MCP SERVER TOOLS
READ 7 tools
Read find_users_by_attribute Search users by any profile attribute (manager, department, title, firstName, etc.) Read get_group Get detailed information about a specific group Read get_user Retrieve detailed user information from Okta by user ID Read get_user_last_location Retrieve the last known location and login information for a user from Okta system logs Read list_group_users List all users in a specific group Read list_groups List user groups from Okta with optional filtering and pagination Read list_users List users from Okta with optional filtering and pagination
WRITE 9 tools
Write remove_user_from_group Remove a user from a group in Okta Write provision_applications Provision application access for multiple users Write unsuspend_user Unsuspend a user in Okta Write activate_user Activate a user in Okta Write assign_user_to_group Assign a user to a group in Okta Write assign_users_to_groups Assign multiple users to groups based on attributes Write bulk_user_import Import multiple users from a CSV string Write create_group Create a new group in Okta Write create_user Create a new user in Okta
DESTRUCTIVE 4 tools
Destructive delete_group Delete a group from Okta Destructive delete_user Delete a user from Okta (must be deactivated first) Destructive deactivate_user Deactivate a user in Okta Destructive suspend_user Suspend a user in Okta
EXECUTE 1 tools
Execute run_onboarding_workflow Run a complete onboarding workflow for multiple users from CSV data

Route Okta MCP Server through PolicyLayer and every one of its 21 tools is checked against your policy before it runs.

CHECK YOUR STACK →

See every tool, the dangerous ones, and the token cost across your stack.

// FAQ
How many tools does the Okta MCP Server MCP server have? +

The Okta MCP Server MCP server exposes 21 tools across 4 categories: Read, Write, Destructive, Execute.

How do I enforce policies on Okta MCP Server tools? +

Route the Okta MCP Server server through the PolicyLayer gateway. Define allow, deny, or approval rules per tool in the dashboard; they are enforced on every call before it reaches the server.

What risk categories do Okta MCP Server tools fall into? +

Okta MCP Server tools are categorised as Read (7), Write (9), Destructive (4), Execute (1). Each category has a recommended default policy.

Enforce policy on every Okta MCP Server tool call.

Start from Okta MCP Server, add the rest of your stack, and see everything your agents can call. Then put policy on all of it.

CHECK YOUR STACK →

Free to start. No card required.

43,000+ MCP servers and 220,000+ tools scanned and risk-classified.

// GET IN TOUCH

Have a question or want to learn more? Send us a message.

Message sent.

We'll get back to you soon.