Hi Team,
I am not able to connect to Okta and get a user details from the REST API action as part of a NERM workflow.
Authentication method : OAuth2 w/private key jwt
here is the error:
21/01/2026 - 16:15:28.06 UTC - :user | Neprofile dashboard - Request Form Action - submitted by Veera Bhamidipati ID (xxxxxxx) - with the following values: {“attribute_name”=>“xxxxxxx”}
21/01/2026 - 16:15:28.18 UTC - :system - Step Manager - Assigned next action RestApiAction ID: xxxxxx
21/01/2026 - 16:15:28.39 UTC - :system - Error - Session could not continue due to exception: REST API Action failure: consent_required: You are not allowed any of the requested scopes. {“error”:“consent_required”,“error_description”:“You are not allowed any of the requested scopes.”}
21/01/2026 - 16:15:28.51 UTC - :system - DashboardRouter - session failed to save, redirecting.
Further, we have already used a similar OAuth2 with jwt token way of authenticating to Okta via IDN tenant.
Observing the Okta logs for each of these calls - IDN to Okta vs NERM to Okta
In the IDN call to Okta we can see the requested and granted scopes:
where as in the NERM to Okta call we do not see any requested or granted scopes which I think is the issue.
I have ensured that private key is working and in the right format(passed beyond this error)
Further,
In the IDN UI, for an Okta direct connector, we see an option to enter the scopes
where as In the NERM UI of the API call, I dont see an option to include scopes
Any inputs on how to get this to work from NERM to Okta?
Thanks in advance
Veera Bhamidipati
