The capabilities service provides operations to determine what an organization or an environment is capable of doing within PingOne with respect to:

Organization capabilities data model

Organization capabilities data model

Property Required? Mutable? Description
assignableLicenses.allowProduction Required Immutable A read-only boolean that specifies whether the license allows production environments.
assignableLicenses.beginsAt Required Immutable A read-only timestamp for when the license period starts.
assignableLicenses.expiresAt Required Immutable A read-only timestamp for when the license period ends.
assignableLicenses.id Required Immutable A read-only string that specifies the license ID for a license that can be assigned to the organization.
assignableLicenses.name Required Immutable A read-only string that specifies the name of a license that can be assigned to the organization.
assignableLicenses.supportedRegions Required Immutable A read-only array that specifies the names of the supported regions for a license that can be assigned to the organization.
canContactSupport Required Immutable A read-only boolean that specifies whether the organization can contact PingOne support.
canCreateEnvironment Required Immutable A read-only boolean that specifies whether the organization can create an environment. A return value of false specifies that the organization’s maximum number of environments has been reached.
canCreateEphemeralTrialLicenses Required Immutable A read-only boolean that specifies whether the organization can create short-term trial licenses.
canUsePlatform Required Immutable A read-only boolean that specifies the status of the associated license. Return values are true (ACTIVE) and false (TERMINATED).
organizationId Required Immutable A read-only string for the ID of the organization.

Environment capabilities data model

Property Required? Mutable? Description
canAddResources Required Immutable A read-only boolean that specifies whether the license supports creation of resources in the specified environment.
canAssignUsersRoles Required Immutable A read-only boolean that specifies whether the license supports role assignments in the specified environment.
canContactSupport Required Immutable A read-only boolean that specifies whether the license allows contact of PingOne Support.
canCreateConnections Required Immutable A read-only boolean that specifies whether the license supports creation of a application connections in the specified environment.
canCreateCustomDomain Required Immutable read-only A boolean that specifies whether the license supports creation of a custom domain in the specified environment.
canPromoteToProd Required Immutable A read-only boolean that specifies whether the environment’s type property can be promoted from SANDBOX to PRODUCTION.
canSendMfaNotificationsOutsideWhitelist Required Immutable A read-only boolean that specifies whether the license supports sending notifications outside of the environment’s whitelist.
canSendPasswordManagementNotifications Required Immutable A read-only boolean that specifies whether the license supports sending password management notifications.
canSendVerificationFlowNotifications Required Immutable A read-only boolean that specifies whether the license supports sending verification flow notifications.
canUseCustomSchema Required Immutable A read-only boolean that specifies whether the license supports using custom schema tributes in the specified environment.
canUseIdentities Required Immutable A read-only boolean that specifies whether the license supports using identities.
canUseIdentityProviders Required Immutable A read-only boolean that specifies whether the license supports using external identity providers in the specified environment.
canUseIntelligence Required Immutable A read-only boolean that specifies whether the license supports using PingIntellegence capabilities in the specified environment. This capability applies to the PingOne Platform and PingOne MFA products.
canUseIntelligenceDataConsent Required Immutable A read-only boolean that specifies whether the customer consents to user and event behavior analytics (UEBA) collection capabilities in the specified environment. This capability applies to the PingOne Risk product.
canUseIntelligenceGeoVelocity Required Immutable A read-only boolean that specifies whether the license supports using PingIntellegence geovelocity capabilities in the specified environment when a geovelocity anomaly is detected. This capability applies to the PingOne Platform and PingOne MFA products.
canUseIntelligenceReputation Required Immutable A read-only boolean that specifies whether the license supports using PingIntellegence reputation capabilities in the specified environment. This capability applies to the PingOne Platform and PingOne MFA products.
canUseIntelligenceRisk Required Immutable A read-only boolean that specifies whether the license supports using Risk capabilities in the specified environment. This capability applies to the PingOne Risk product.
canUseMfa A boolean that specifies whether the license supports using MFA in the specified environment.
canUseMfaFido2Devices Required Immutable A read-only boolean that specifies whether the license supports MFA operations on FIDO2 devices.
canUseMfaPushNotifications Required Immutable A read-only boolean that specifies whether the license supports MFA push authentication for native applications in the specified environment.
canUseMyAccount Required Immutable A read-only boolean that specifies whether the license supports using the My Account capabilities in the specified environment.
canUsePasswordManagement Required Immutable A read-only boolean that specifies whether the license supports using password management capabilities in the specified environment.
canUsePasswordOnlyAuthentication Required Immutable A read-only boolean that specifies whether the license supports using password only login capabilities in the specified environment.
canUsePasswordPolicy Required Immutable A read-only boolean that specifies whether the license supports using password policies in the specified environment.
canUsePlatform Required Immutable A boolean that specifies the status of the associated license. Return values are true (ACTIVE) and false (TERMINATED).
canUseProvisioning Required Immutable A read-only boolean that specifies whether the license supports using provisioning capabilities in the specified environment.
canUseVerificationFlow Required Immutable A read-only boolean that specifies whether the license supports using verification flows in the specified environment.
canUsersUpdateSelf Required Immutable A read-only boolean that specifies whether the license supports allowing users to update their own profile.
environmentId Required Immutable A read-only string for the ID of the environment.

Response codes

Code Message
200 Successful operation.
400 The request could not be completed.
401 You do not have access to this resource.
403 You do not have permissions or are not licensed to make this request.
404 The requested resource was not found.

You need Organization Admin role or the Environment Admin role to get the capabilities for an organization or an environment, respectively. For more information about roles, see Roles.