> ## Documentation Index
> Fetch the complete documentation index at: https://bloodhound.specterops.io/llms.txt
> Use this file to discover all available pages before exploring further.

# Okta_AgentPool

> A pool of synchronization or authentication agents in Okta

<img noZoom src="https://mintcdn.com/specterops/tTIczgde9H07oLXf/assets/enterprise-AND-community-edition-pill-tag.svg?fit=max&auto=format&n=tTIczgde9H07oLXf&q=85&s=ad49a576589f4d2a8081df77d07fdf56" alt="Applies to BloodHound Enterprise and CE" width="482" height="45" data-path="assets/enterprise-AND-community-edition-pill-tag.svg" />

## Overview

The Okta\_AgentPool nodes represent Okta Agent Pools, which are collections of Okta Agents (represented as [Okta\_Agent](/opengraph/extensions/okta/nodes/okta_agent) nodes) that work together to provide high availability and load balancing for on-premises integrations.

The following agent pool types are supported by Okta:

| Agent Pool Type | Description                                                                                                                        |
| --------------- | ---------------------------------------------------------------------------------------------------------------------------------- |
| AD              | [Active Directory](https://help.okta.com/en-us/content/topics/directory/ad-agent-integration-implementation-options.htm)           |
| IWA             | [Integrated Windows Authentication (Kerberos/NTLM)](https://help.okta.com/en-us/content/topics/directory/ad-iwa-learn.htm)         |
| LDAP            | [Lightweight Directory Access Protocol](https://help.okta.com/en-us/content/topics/directory/ldap-agent-supported-directories.htm) |
| RADIUS          | [RADIUS authentication proxy](https://help.okta.com/en-us/content/topics/integrations/radius-best-pract-flow.htm)                  |
| MFA             |                                                                                                                                    |
| OPP             |                                                                                                                                    |
| RUM             |                                                                                                                                    |

The most common agent pool type is the Active Directory (AD) Agent Pool, which consists of one or more AD Agents that facilitate bi-directional object synchronization between Okta and on-premises Active Directory environments.

<img src="https://mintcdn.com/specterops/vLZ2lUIRm_HibFmq/images/extensions/okta/bloodhound-ad-agent-pool.png?fit=max&auto=format&n=vLZ2lUIRm_HibFmq&q=85&s=923ed1942b7c2de7e9df3ae355bd643f" alt="Okta AD Agent Pools displayed in BloodHound" width="1530" height="841" data-path="images/extensions/okta/bloodhound-ad-agent-pool.png" />

## Edges

<Note>
  The tables below list edges defined by the Okta extension only. Additional edges to or from this node may be created by other extensions.
</Note>

### Inbound Edges

| Edge Type                                                                  | Source Node Types                                                        | Traversable |
| -------------------------------------------------------------------------- | ------------------------------------------------------------------------ | ----------- |
| [Okta\_AgentMemberOf](/opengraph/extensions/okta/edges/okta_agentmemberof) | [Okta\_Agent](/opengraph/extensions/okta/nodes/okta_agent)               | ✅           |
| [Okta\_Contains](/opengraph/extensions/okta/edges/okta_contains)           | [Okta\_Organization](/opengraph/extensions/okta/nodes/okta_organization) | ✅           |

### Outbound Edges

| Edge Type                                                                | Destination Node Types                                                 | Traversable |
| ------------------------------------------------------------------------ | ---------------------------------------------------------------------- | ----------- |
| [Okta\_AgentPoolFor](/opengraph/extensions/okta/edges/okta_agentpoolfor) | [Okta\_Application](/opengraph/extensions/okta/nodes/okta_application) | ✅           |

## Properties

| Name                | Source                        | Type     | Description                                           |
| ------------------- | ----------------------------- | -------- | ----------------------------------------------------- |
| `id`                | `agentPool.id + "_pool"`      | `string` | Unique agent pool identifier.                         |
| `name`              | `agentPool.name`              | `string` | Name of the Okta agent pool.                          |
| `displayName`       | `agentPool.name`              | `string` | Display label used in BloodHound.                     |
| `oktaDomain`        | Collector context (non-API)   | `string` | Okta organization domain where the agent pool exists. |
| `operationalStatus` | `agentPool.operationalStatus` | `string` | Current health/operational state of the agent pool.   |
| `type`              | `agentPool.type`              | `string` | Agent pool type (for example AD, LDAP, IWA, RADIUS).  |

<Info>
  Active Directory (AD) agent pool identifiers have the same values as the identifiers of the corresponding application objects.
  The `_pool` suffix is therefore added to the `id` property of `Okta_AgentPool` nodes to ensure uniqueness of node identifiers in BloodHound.
</Info>

## Sample Property Values

```yaml theme={null}
id: 0oaxg9rhdd7ncGCXv697_pool
name: contoso.local
displayName: contoso.local
oktaDomain: contoso.okta.com
operationalStatus: DISRUPTED
type: AD
```