Create

Create

post/api/v1/step-up/providers

Invokes the c1.api.stepup.v1.StepUpProviderService.Create method.

Body Parameters

clientIdstring

optional

The clientId field.

clientSecretstring

optional

The clientSecret field.

displayNamestring

optional

The displayName field.

issuerUrlstring

optional

The issuerUrl field.

microsoftconditionalAccessIdsarray of stringtenantstringStepUpMicrosoftSettings

optional

StepUpMicrosoftSettings represents a Microsoft Entra Provider using Conditional Access Policies to enforce step-up authentication.

oauth2acrValuesarray of stringStepUpOauth2Settings

optional

StepUpOAuth2Settings repersents an OAuth2 provider that supports RFC 9470 https://www.rfc-editor.org/rfc/rfc9470

Common ACR values for OAuth2 providers include:

• "urn:okta:loa:1fa:any" (okta)
• "urn:okta:loa:1fa:pwd" (okta)
• "urn:okta:loa:2fa:any" (okta)
• "urn:okta:loa:2fa:any:ifpossible" (okta)
• "phr" (okta)
• "phrh" (okta)

Returns

stepUpProvideridstringclientIdstringcreatedAtstringdisplayNamestringenabledbooleanissuerUrlstringlastTestedAtstringmicrosoftStepUpMicrosoftSettingsoauth2StepUpOauth2SettingsupdatedAtstringStepUpProvider

optional

The StepUpProvider message.

This message contains a oneof named settings. Only a single field of the following list may be set at a time:

• oauth2
• microsoft

Request example cURL

curl https://{tenantDomain}.conductor.one/api/v1/step-up/providers \
    -H 'Content-Type: application/json' \
    -H "Authorization: Bearer $CONDUCTORONE_SDK_API_KEY"

200 Example

{
  "stepUpProvider": {
    "clientId": "clientId",
    "displayName": "displayName",
    "enabled": true,
    "issuerUrl": "issuerUrl",
    "microsoft": {
      "conditionalAccessIds": [
        "string"
      ],
      "tenant": "tenant"
    },
    "oauth2": {
      "acrValues": [
        "string"
      ]
    }
  }
}