What type of authentication fails if the Active Directory Agent is not configured properly?

Delegated authentication relies on the Active Directory (AD) Agent to verify user credentials against an on-premises Active Directory system. When the AD Agent is set up correctly, it enables Okta to defer authentication requests to the AD, allowing users to log in using their existing AD credentials without needing to maintain separate passwords within Okta.

If the AD Agent is not configured properly, this connection fails, and since delegated authentication specifically depends on this integration to authenticate users, it results in failed authentication attempts. Other methods, such as multi-factor authentication and single sign-on, may utilize the AD credentials but do not directly hinge on the successful configuration of the AD Agent in the same way. Username/password authentication, while reliant on credential verification, does not necessarily depend on a properly configured AD Agent in environments where Okta is handling user credentials directly.