The capabilities service provides operations to determine what an organization or an environment is capable of doing within PingOne with respect to:

Organization capabilities data model

Property Description
assignableLicenses.allowProduction A boolean that specifies whether the license allows production environments.
assignableLicenses.beginsAt A timestamp for when the license period starts.
assignableLicenses.expiresAt A timestamp for when the license period ends.
assignableLicenses.id A string that specifies the license ID for a license that can be assigned to the organization.
assignableLicenses.name A string that specifies the name of a license that can be assigned to the organization.
assignableLicenses.supportedRegions An array that specifies the names of the supported regions for a license that can be assigned to the organization.
canContactSupport A boolean that specifies whether the organization can contact PingOne support.
canCreateEnvironment A boolean that specifies whether the organization can create an environment. A return value of false specifies that the organization’s maximum number of environments has been reached.
canCreateEphemeralTrialLicenses A boolean that specifies whether the organization can create short-term trial licenses.
canUsePlatform A boolean that specifies the status of the associated license. Return values are true (ACTIVE) and false (TERMINATED).
organizationId A string for the ID of the organization.

Environment capabilities data model

Property Description
canAddResources A boolean that specifies whether the license supports creation of resources in the specified environment.
canAssignUsersRoles A boolean that specifies whether the license supports role assignments in the specified environment.
canContactSupport A boolean that specifies whether the license allows contact of PingOne Support.
canCreateConnections A boolean that specifies whether the license supports creation of a application connections in the specified environment.
canCreateCustomDomain A boolean that specifies whether the license supports creation of a custom domain in the specified environment.
canPromoteToProd A boolean that specifies whether the environment’s type property can be promoted from SANDBOX to PRODUCTION.
canSendMfaNotificationsOutsideWhitelist A boolean that specifies whether the license supports sending notifications outside of the environment’s whitelist.
canSendPasswordManagementNotifications A boolean that specifies whether the license supports sending password management notifications.
canSendVerificationFlowNotifications A boolean that specifies whether the license supports sending verification flow notifications.
canUseCustomSchema A boolean that specifies whether the license supports using custom schema tributes in the specified environment.
canUseIdentities A boolean that specifies whether the license supports using identities.
canUseIdentityProviders A boolean that specifies whether the license supports using external identity providers in the specified environment.
canUseIntelligence A boolean that specifies whether the license supports using PingIntellegence capabilities in the specified environment. This capability applies to the PingOne Platform and PingOne MFA products.
canUseIntelligenceDataConsent A boolean that specifies whether the customer consents to user and event behavior analytics (UEBA) collection capabilities in the specified environment. This capability applies to the PingOne Risk product.
canUseIntelligenceGeoVelocity A boolean that specifies whether the license supports using PingIntellegence geovelocity capabilities in the specified environment when a geovelocity anomaly is detected. This capability applies to the PingOne Platform and PingOne MFA products.
canUseIntelligenceReputation A boolean that specifies whether the license supports using PingIntellegence reputation capabilities in the specified environment. This capability applies to the PingOne Platform and PingOne MFA products.
canUseIntelligenceRisk A boolean that specifies whether the license supports using Risk capabilities in the specified environment. This capability applies to the PingOne Risk product.
canUseMfa A boolean that specifies whether the license supports using MFA in the specified environment.
canUseMfaFido2Devices A boolean that specifies whether the license supports MFA operations on FIDO2 devices.
canUseMfaPushNotifications A boolean that specifies whether the license supports MFA push authentication for native applications in the specified environment.
canUseMyAccount A boolean that specifies whether the license supports using the My Account capabilities in the specified environment.
canUsePasswordManagement A boolean that specifies whether the license supports using password management capabilities in the specified environment.
canUsePasswordOnlyAuthentication A boolean that specifies whether the license supports using password only login capabilities in the specified environment.
canUsePasswordPolicy A boolean that specifies whether the license supports using password policies in the specified environment.
canUsePlatform A boolean that specifies the status of the associated license. Return values are true (ACTIVE) and false (TERMINATED).
canUseProvisioning A boolean that specifies whether the license supports using provisioning capabilities in the specified environment.
canUseVerificationFlow A boolean that specifies whether the license supports using verification flows in the specified environment.
canUsersUpdateSelf A boolean that specifies whether the license supports allowing users to update their own profile.
environmentId A string for the ID of the environment.

Response codes

Code Message
200 Successful operation.
400 The request could not be completed.
401 You do not have access to this resource.
403 You do not have permissions or are not licensed to make this request.
404 The requested resource was not found.

You need Organization Admin role or the Environment Admin role to get the capabilities for an organization or an environment, respectively. For more information about roles, see Roles.