JUMP TOIdaptive Identity Platform APIAuthorizationCheck row ACLs.postGet a collection of access rights.postGets the collection access rights based on the input parameters.postRetrieves a list of who has what rights for the directory.postGets a list of directory rights.postGets a list of file rights.postGets a list of row rights.postGets ACLs on a file.postGets the access rights for a row.postAdditional APIsGets a users access rights.postThe tenant brand information.postThe tenant brand.postDeprecated -- Delete a list of users with permission check.postDelete user after permission check (DEPRECATED)postDelete a cloud user. (DEPRECATED)postGets the contents of a bucket.postGets the members with access to the set.postDeprecated -- Adds a Blocked IP Range.postDeprecated -- Adds an IP Range local to the customer network.postDeprecated -- Deletes a Blocked IP Range.postDeletes a Blocked IP Range.postDeletes an IP Range local to the customer network.postDeletes a list of proxies.postRemove a connector referred to by proxyUuid.postDeprecated -- Deletes an IP Range local to the customer network.postDisableBlockedIpRange: Disable blocked IP RangepostDisablePremDetectRange: Disable OnPrem Detect RangepostEnableBlockedIpRange: Enable block IP RangepostEnablePremDetectRange: Enable OnPrem Detect RangepostGenerates a new registration code.postGets the blocked IP Ranges.postGets the directory services.postGets download urls.postGets the localized value of the tag.postGets the IP Ranges local to the customer network.postRetrieves a list of product licenses for this tenant, from Salesforce.postGet supported cultures, returning their code and native name.postThis is a callback used by the twilio service.postIssues a user certificate. (Deprecated, please use OAuth2 instead.)postSet the connector Iwa Settings for proxyUuid.postUpdates a Blocked IP Range.postUpdates an IP Range local to the customer network.postSimple health check for load balancers: Is this node active?postReturns login Data configurement.postList the Dashboard roles and rights.postDeprecated -- Forces the Idaptive oath profile to exist.postDeprecated -- Resets the Idaptive OATH profile.postLoginpostGets a list of policy links.postDeprecated; use SavePolicyBlock3.postSaves a list of policy links.postGets a list of tenants for the customer.postRegister a new tenant.postActivates restricted username in WPM.postDeactivates restricted username in WPM.postDeletes restricted username in WPM.postGets the list of restricted usernames for WPM.postFetch a Role.postAdds or Updates a restricted username.postDeprecated -- Update a Role.postDeprecated -- Am I authenticated.postDeprecated -- Checks for user execute rights on the Application Role Management task.postGets a list of risk levels.postDeprecated -- User login.postDeprecated -- Multi factor authentication login for user.postReturns Out of band login statuspostSet status of EULA Acceptance for userpostSaves an Security Image Name in DB.postDeprecated -- EnableFeaturespostDeprecated -- EnrollpostRegisterpostVerify password.postAdd an account for a resourcepostChecks out an account passwordpostDelete an accountpostGets list of permissions associated with an accountpostGet administrator informationpostGet administrator information for a domainpostGet AD topology and administrator informationpostGet the account status for an administratorpostGet a retired password of an accountpostGrants permissions on accountspostCreate or remove administrator accountspostGrant permissions on domainspostUpdate an accountpostGet the system version.postEmails the report from scriptPath to the emailTo address.postDeprecated -- Get editable mail templates.postEvaluate a shortened URL key, redirecting to its long URL if valid.postGets all available data for the user portal in one call.postGets all available data based on app search for the user portal in one call.postRuns a risk check for the current user.postFetch attributes for a specified user.postDEPRECATED -- This API is deprecated and should not be used.postWidget ManagementGet Authentication Widget as PagepostPolicy ManagementDeletes an authentication profile.postGets an authentication profile.postGets a list of Authentication profiles.postGets an Authentication Assurance LevelpostSaves an authentication profile.postAdd an authentication policy modifier.postDelete an authentication policy modifier.postDelete a policy block.postGet the authentication policy modifiers.postGets a list of policy links.postGet policy block.postGets the oath otp name for the user.postGet the password complexity requirements for the user.postGet policy block.postRetrieves a boolean policy value.postRetrieves an integer policy value.postGet the policy meta data.postRetrieves a string policy value.postGet the rsop policy for the user and device.postGets the oath u2f name for the user.postGet using cloud mobile group policy.postGet a list of policies for a device.postSave a new or updated policy.postSaves a list of policy links.postSets the using cloud mobile group policy.postUser ManagementChange cloud user propertiespostChange the state of a cloud user from disabled to active or vice versapostCreate a new user in the Cloud Directory ServicepostCreate new users in the Cloud Directory Service based on data read from files.postCreate a new user in the CyberArk Cloud Directory Service using minimal user informationpostCreate new users in the CyberArk Cloud Directory ServicepostExempt a specified user from MFA login for a period of time.postBulk imports users Default csv file.postFetch technical support user.postGet details for a specified cloud userpostGet details for the current user.postGet details for a specified cloud user by providing username.postGet the details of all existing cloud userspostReads a list of users for bulk import from a CSV filepostGrant portal access to technical support.postRefresh a user's cached identity.postRemoves AuthSource for list of userspostSet a cloud user's picture file.postSet user state for a specified cloud userpostPerforms the action after confirming permission to do so.postCreate a Bulk User Import scheduled task to process the uploaded filepostVerifyIdentityOTP: Verify if the One Time Passcode matched with the stored valuepostGets all user settings of setting type.postSaves the user information.postStores the User Setting.postGets the value of an extended column.postGet the value of all extended attributes for a userpostGet a table's extended columnar schemapostSets the value of an extended column.postSet the value of extended attributes for a userpostUpdate a table's extended columnar schemapostAdvance a forgot username session (similar to MFA advance authentication)postGet Token for username Requires OATH2 Authorization headerpostRefresh current user's cached identity.postStart a forgot username sessionpostChecks to see if user has execute rights on the task.postChecks to see if user has execute rights on a list of tasks.postAdd and update application tags for the current user.postChange cloud user properties and set the value of additional attributespostCheck to see if a user can edit attributes.postUpdate user attributes for a active directory userpostChange the password for the current user after authenticationpostCheck if a user profile challenge is required for the current user.postUse this API to fetch a one-time login URL for the newly created cloud user.postGet the cached entity.postGet the cached user.postGet additional info for a specified userpostFetch a cloud user's picture.postGet the user preferences.postGets user roles and administrative rights.postInvite one or more users to the cloud portal.postChecks to see if a given user is cloud locked.postDetermine if the current user can (or cannot) satisfy the requisite MFA challengespostChecks to see if a given user is subject to cloud locks.postRemove a user from the cloud.postRemove one or more users.postReset the password for a specified userpostSend email invitation to a specified user.postSend invitation emails to one or more users.postSend SMS invitation to a specified user.postApplies or clears a cloud lock for a given user.postUncache the user preferences.postUpdates various user preferences for the currently logged in user.postDirectory Service ManagementGet all of the directory service settingspostSets all given directory service setting valuespostAssigns directoryfile rights to roles.postAssigns directory rights to roles.postCreate a directory.postDeletes a directory.postCheck for the existence of a directory.postGet a list of domains in the forest.postGets the active directory topology for the directory service Uuid or the domain name.postList the directory contents of a directory.postGet a list of directory contents.postList the roles and rights to a directoryfile.postGets directory information for the path.postGets a list of domain controllers for the directory service Uuid in domain name.postGet domains and organizational units.postGet a list of directory contents with a file extension of 'report'.postList the file contents of a directory.postUpdates the directory services stack for a tenant.postCall back for the google directory service.postGets the IDP authorization state for the pollingToken.postGets the directory service configuration.postGets the state id and the service login url.postUpdates the directory service configuration.postUpdates the directory service configuration.postAdds a service to the Lightweight Directory Access Protocol (LDAP) config.postRemove a service from the Lightweight Directory Access Protocol (LDAP).postGets the directory service version for an LDAP directory service specified by UUID.postGet the Lightweight Directory Access Protocol (LDAP) config.postGet the Directory Service UUID for a specific LDAP, using the name assigned by the user.postGets the list of mappable LDAP attributes.postGets a property to attribute mapping on an LDAP enabled directory service.postGets the scripting property to attribute mapping from an LDAP enabled directory service.postModify a service in the Lightweight Directory Access Protocol (LDAP) config.postSets a property to attribute mapping on an LDAP enabled directory service.postSets the scripting property to attribute mapping on an LDAP enabled directory service.postGets the results of the specified mappings by looking up a user by name.postVerify the Lightweight Directory Access Protocol (LDAP) directory service config.postQuery all directory services for users, groups, and/or roles using a json query string.postFederationsRemoves AuthSource from all users for a given FederationpostAdd global group assertion mapping.postCreate federation.postDelete a federation.postDelete global group assertion mapping.postGet the federation metadata.postRetreives a list of users that are members of a specific federated group.postRetrieves the Federated Group Memberships for a specfic user.postGet a federation.postGet federation group assertion mappings.postGets a list of federations.postGets a list of federation types.postGet global federation settings.postGet global group assertion mappings.postGets a list of federated groups.postRevokes federated group membership from a specific group for a specific user.postUpdate a federation.postUpdate federation group assertion mappings.postUpdate the global group assertion mappings.postTo intiate OIDC Federation from IDPpostSignupSend SendIdentityVerificationOTP to a specified user.postTo get Consent Management ConfigurationpostGet Consent Management Script and script editor helper infopostTo Find if Consent Management is enabledpostUpdate Consent Management ConfigurationpostTo get identity Proofing Info of a userpostTo get Identity Provider ConfigurationpostGet IDV Scipt and script editor helper infopostTo get Workflow Approvers defined for sign-up approval workflow.postTo Find if IdentityProofing is enabledpostUpdate Identity Verification ConfigurationpostUpdate the User Sign Up StatuspostCreate a new external user in the Cloud Directory Service via the SignUp mechanism.postDevice Set ManagementCreate a dynamic set.postCreate a manual set.postDelete a set.postGets a set based on the ID.postGet list of permissions associated with a set.postGets the references to a set.postGets the rights on a set.postGets a set template based on ObjectType and SubObjectType.postGets the objects set.postGets a set of ObjectType.postGets the members with access to the set.postGrant permissions on a setpostUpdate a set.postUpdates the set members.postFile ManagementAssigns file rights to roles.postDeletes a file.postDeletes a set of files.postDownload the contents of a file.postCheck for the existence of a file.postGet metadata and information about a file, as well as the file contents.postList the roles and rights of a file.postReturns a file name that is unique in the directory.postReturn given text as a file.postMove directory 'path' to 'toPath'.postRead the contents of a file.postWrite string content to a file.postRetrieves the file from the virtual file system.postGet the file.postGet lower case file name.postConnector ManagementRequests a heath check from a specific cloud connector or from all cloud connectors.postGets the connector log4net config for the connector.postGets the current Iwa Json Url.postGets the current Iwa Url.postGets the public part of the default global app signing certificate.postGet the Iwa trust root certificate.postGet the connector Iwa host certificate file.postGets the Iwa settings for the connector Uuid.postCalls the NotifyEnvironment method on the connector.postRedirect to the targetUrl.postRe issue the certificate for the connector.postSets the connector Log4Net config for a connector.postSet the certificate for the Iwa connector.postStarts the named service on the connector.postStops the named service on the connector.postUpdates the Iwa connector settings.postGet a list of cloud connectors that have the LDAP module enabled.postDummypostReportsCreates a Reports directory in Path for the tenant.postCreates a Reports directory in the tenant for the current user.postList the Report roles and rights.postTenant ManagementRemoves a suffix.postRemoves multiple suffixes.postDeletes the tenant configuration key.postGet the tenant suffixes.postGet the tenant suffixes excluding 'legacy' versions.postGets the tenant's config value for a key.postGets the tenant's config value for a key.postSets the value of a tenant configuration key.postStore a suffix.postGet SmsGateway configuration.postSet SmsGateway configuration.postTest Sms Gateway configuration.postDescribe the system.postRetrieve a session id.postList the cnames assigned for the tenant.postGets the domain of tenant urlspostCreates a cname with prefix specified for the tenant.postSets the tenant cname to preferred as cnamepostGets the tenant cnames.postDeletes the cname for the tenantpostDeletes a single key record from the config table.postReturns tenant's configuration values.postGet tenant configuration.postGets the google key for the tenant.postGets the tenant mobile configuration data.postGet the tenant Simple Mail Transport Protocol configuration.postGet the tenant Telephony Credits Notification configuration.postGet the tenant Twilio configuration.postReset portal configuration.postSet the tenant configuration.postSet a tenant configuration.postSets the google key for the tenant.postSets the tenant mobile configuration.postSet password persistance. i.e. do we save your password.postSet the tenant Simple Mail Transport Protocol configuration.postSet the tenant Telephony Credits Notification configuration.postSet the tenant Twilio configuration.postTest the tenant Simple Mail Transport Protocol configuration.postTest the tenant Twilio configuration.postCertificate ManagementDelete a set of certificates.postDownloads a certificate.postGets the certificate authority certificate chain.postGets the public part of the cloud certificate authority certificate.postGets the public part of the tenant CA certificate.postGets the Zso certificatepostGets the Zso host information.postIssues a Zso user certificatepostRename certificate with thumbprint to newName.postSets the default certificate for the current tenant.postUploads a certificate.postAdd a certificate authority.postDownloads the certificate authority public key file.postGet certificate authorities for the tenant.postRemove a certificate authority.postUpdate a certificate authority.postGets the public part of the Service Provider signing certificate.postGets the public part of the Service Provider signing certificate authority.postGet certificate info for a given user.postRemove one or more certificates for a given user.postAuthenticate the ZSO session.postLogin using a tenant Certificate authority certificate.postClears the Mac Safari Zso cookie.postIs the Mac Safari Zso cookie set.postChecks to see if sessionId is authenticated.postSets the Mac Safari Zso cookie.postMulti-Factor RegistrationGenerate random password for the userpostGet OATH OTP provisioning key URI and QR code for device setup using third party OATH OTP ClientpostAdd a single OATH profile to a specific user.postForces the Idaptive oath profile to exist.postDelete a list of profiles.postGets data from a csv file.postGet import profile list.postGets the profile list for the user.postGets the oath profile list for a device.postResets the Idaptive OATH profile.postResynchronize a TOTP or HOTP token.postSave or update the default Idaptive profile.postSet response parameters to entity.postProcess a previously uploaded csv file.postUpdate the oath profile counter.postValidate the otp code.postGet all radius clients.postFetch Radius config for a specified connectorpostGet the list of RADIUS serverspostGet the user identifier attribute types.postRemove one or more radius clients if they exist.postRemove radius servers.postAdd or update a radius client.postChange radius config for a connector.postConfigures a Radius server.postMultifactor Auth Support: Answer Out of Band ChallengepostFetches a one-time passcode for the specified use.postGet QR Code StatuspostStarts a user authentication session using QR code scanpostSubmit DUO authenticationpostSubmit DUO authenticationpostSubmit OATH OTP code for the specify userpostSubmit QR Code authentication factorpostLooks for the multi auth customer response.postLooks for the multi auth customer response.postDelete Admin security question.postGet a specific admin security question.postGet list of all the admin security questions.postAdd admin security questionpostGet security questions for the current userpostResets (clears) security questions for a userpostSet the phone pin for a userpostUpdates security questions for a userpostRole ManagementGet a list of assigned administrative rights associated with a role.postList the roles and rights of a directory.postFetch a Proxy Notification Members.postTo Assign administrative rights to roles.postGet the users for the specfied role id and return the paged results.postFetch a Role.postTo Get Role Members for a particular rolepostSet script of dynamic rolepostCreate a RolepostRun the script against a user to verify the expectations of the scriptpostTo Unassign administrative rights to role.postUpdate members(Users or Roles or Groups) for an existing role.postAdd users or roles or groups to rolepostDeprecated -- Assign super rightspostDelete a Role.postDelete a list of Roles.postTo Get Web Apps Information for a particular rolepostDeprecated -- Fetch a Role's principals.postRemove users or roles or groups from the rolepostDeprecated -- Create a Principal List role.postDeprecated -- Unassign super rightspostDevice ManagementEnroll an Android Mobile DevicepostEnroll an iOS Mobile DevicepostDeletes the APNS Developer certificate details used to send push notifications to the MobilepostDelete a device (Mobile + OSX)postDisable SSO on device (Mobile + OSX)postEnable SSO on device (Mobile + OSX)postGets list of global permissions associated with devicepostReset Samsung KNOX container password (Samsung Mobile)postLock client app (Mobile)postLock device screen (Mobile + OSX)postPing a device (Mobile + OSX)postPower off a device (Mobile + OSX)postReapply device policies (Mobile + OSX)postReboot a device (Mobile + OSX)postUnenroll a device (Mobile + OSX)postReset client app lock pin (Mobile)postSets the APNS Developer certificate to be able to send push notifications to the MobilepostGrant permissions on devicespostSet a device as primary (Mobile)postUnlock a device (Mobile + OSX)postUpdate device policies (Mobile + OSX)postWipe a device (Mobile + OSX)postAdd an enrollment codepostDelete an enrollment codepostDisables zero or more features for an enrolled machine.postEnables zero or more features for an enrolled machine.postEnrolls a machine to the CIP using user credentials.postGet all enrollment codespostReturns a machine certificate.postEnrolls a machine to the CIP using an enrollment code.postUnenroll an enrolled Agent.postDeletes the U2f device.postDelete a list of U2f devices.postGet the trusted facet list for the tenant.postGet registration challenge.postGets a list of U2f devices.postGets a list of U2f devices for the current user.postTo create a local user on target windows machinepostTo delete a local user on target windows machinepostTo get the DpaAdmin user detailspost/WinDpa/SetDpaAdminpostTo get the DpaAdmin user detailspostWorkflow ManagementDeletes a workflow jobpostSends a workflow event to a workflowpostGets a workflow jobpostGets list of workflow jobspostGets list of workflow jobs associated with the current userpostStarts a workflow jobpostDelete job history.postMake a job report.postRequest the cancellation of a job.postCreate a one time job.postReturns streaming job history data via a redrock style interface.postGets the history of a single job.postRetrieve simple job metrics from the persistent job system.postOAuth & OpenID ConnectAuthenticates a request.postConfirms the User Consent when invoked from UIpostDEPRECATED -- End Session - destroy an OIDC sessionpostLogs the user out - ends an OIDC sessionpostGet metapostIntrospects the access token and refresh token.postProvides the public elements of the keypostGets a CyberArk Identity Security Platform OIDC token based on grant type.postRevokes the access tokenpostGets a token based on grant type.postReturns Claims about the authenticated End-UserpostCreates a client token.postContinues user authentication.postOrganization ManagementChange membership on specific organizationpostCreate an organizationpostDelete an organization unitpostGet organization detailspostGet administrators for specific organizationpostGet administrative right definition for specific organizationpostGet roles of specific organizationpostGet All organizations unitspostCheck if current user can perform specific taskpostUpdate an organization unitpostUpdate organization administratorspostUpdate organization permission assignmentpostFetch the reporting hierarchy for a specified userpostApplication ManagementShare personal application with other users.postAdds new application custom attribtues at global levelpostSet custom attribute values for an applicationpostClone an existing application.postDelete an application.postDeletes one or more application custom attributes globallypostDelete single or multiple values for custom attributes on an applicationpostGets all application custom attributes at global levelpostGets all apps associated with custom attributeNamepostGets all custom attirbutes associated with an applicationpostGets the ID of an app from its service namepostGet information for an applicationpostGets data from a csv file.postGet information for application templates.postCreate an application.postChecks if Application is still available in the catalog.postGrant permissions on applications.postGets data from a csv file.postUpdates an application.postAdd new Secured Item either Secured Note or Secured Password.postCreate a tag with no apps for the current user.postDelete Secured Notes Or Password by keypostDelete a tagpostDownloads logs for the imported accounts file.postGet an application's data.postReturns list of credential providers.postGet Secured Item Informtion by Unique KeypostGetE2EEncryptionInfo - Get E2E info for encrypting secret data at client side.postGet App CredspostGet Secured Item Informtion by Unique KeypostReturns list of details for recently uploaded files.postReturn a user's portal applications and user accessible application's.postGet Secured Item information by Unique KeypostGet the list of application tags for the current user.postGets Totp seed details for an application.postGets personal applications catalog.postAdd or Delete ApplicationspostRename a tagpostSets Totp seed for an application.postSet Default Tag for AppspostSet user credentials for an application.postupdate captured user application .postUpdate secured item credentials.postUpdate personal user application.postUpdate information about Secured Item.postupdate user application for the current user.postUpload personal app icon.postUpload secured item icon.postUpdate secured item permissions.postAdd and update secured item tags for the current user.postVerify if username provided for personal app or secured item is allowed.postAuthenticationGet PPM Scipt and script editor helper infopostUpdate Progressive Password Migration ConfigurationpostAttempt to advance the state of an authentication session.postGet challenge state ID for Authentication profilepostTerminate an incomplete session started with StartAuthentication or StartChallenge.postBegin the process of recovering a lost or forgotten user name.postLogout current user.postAllows OAuth2 clients to perform on-demand step-up authentication challenges.postStarts a user authentication session.postStart a step-up challenge for sensitive appspostStart social authentication.postConfirms user authentication state.postAnswer the registration challenge.postSign out for the current sessionpostSign out user everywherepostSocial LoginFor social authentication, this is the Facebook call back.postFor social authentication, this is the Google call back.postFor social authentication, this is the LinkedIn call back.postFor social authentication, this is the Microsoft call back.postFor social authentication, this is the Twitter call back.postGets the social configurations for all identity providers.postGet the application client secret.postGets the social user authentication configuration.postGets the social configuration for the requested identity provider.postResets the social user authentication configuration.postSets the social user authentication configuration.postSet custom configuration.postCustomizationGet editable message template.postGet editable message templates.postSend a test message template.post/UserIdentifiers/GetTo get the configuration of the user attributes.post/UserIdentifiers/PrimaryIdentifiersGet standard user attributespost/UserIdentifiers/SaveTo save the configuration of the user attributespostAnalyticsApi Management System: Operations for API KeyToken ManagementGet API listgetCreate APIpostDelete APIdeleteGet bulk API access tokensgetCreate an API access tokenpostGet API access tokengetRevoke an API access tokendeleteActivate an API access tokenputInactivate an API access tokenputResume APIpostGet available scopesgetSuspend APIpostGet API with API keygetUpdate API with API keyputDelete API with API keydeleteResume API with API keypostSuspend API with API keypostAnalytics Dataset APIget all database for one usergetupdate a data setputsave a data setpostdelete data setsdeletegenerate data set query from explorer querypostvalidate input query stringpostrun a querypostget analytics system tablesgetget snapshots for given modelgetget one custom data setgetIdentity Intelligence: Operation for Identity IntelligenceGet risk model contextgetUpsert risk model contextputrestore to default risk model contextdeleteGet risk modelgetUpsert risk modelputrestore to default risk modeldeleteGet risk model context with user_idgetUpsert risk model context with user_idputrestore to default risk model context with user_iddeleteGet risk model with user_idgetUpsert risk model with user_idputrestore to default risk model with user_iddeleteGenerate user riskpostGenerate fraudulent predictionpostGet risk level intervals from risk modelgetSession Timeline: Session Timeline for Target Server and User BehaviorGet session timeline detailsgetNotification: Operations for notification rules and actionsget all rule policiesgetupdate a rule policyputadd a rule policypostadd a email rule policypostadd a lock user rule policypostget supported template variablesgetadd a webhook rule policyposttest a webhook rule policypostdelete a rule policydeletetoggle a rule policypostPrivilege Risk ConfigurationGet all security configsgetCreate a new security configpostRestore all security configs to default valuepostUpdate a security configputDelete a security configdeleteUser Query: Operations for User's Query Statement with DataSetget dataset query summarygetupdate a dataset queryputsave a dataset querypostdelete a dataset querydeleterun a querypostget dataset query by idgetDEPRECATED -- End Session - destroy an OIDC sessionpost deprecatedhttps://example.com/OAuth2/EndSessionKeeping this API for backward compatibility. Please use OAuth2/EndSessionV2 instead.
