User Guide

Operation Guide for the Administrator

User Information / Group Information Synchronized when Linked with Okta

User information synchronized

User information Property in Okta Description
User ID Username
  • Any characters other than single-byte alphanumeric characters, hyphen (-), and period (.) are replaced with an underscore (_), and the portion preceding the @ sign is matched.
  • If the first character is a hyphen (-), the hyphen (-) is replaced with an underscore (_).
  • If there is a duplicate user in the same tenant, the @ sign is replaced with an underscore (_), and the entire value in the Microsoft Entra ID property is matched.
  • If there is a duplicate user even though the portion succeeding the @ sign is included, a random four-digit value is added to avoid duplication.
  • If the user is already registered, the user ID cannot be synchronized.
Email address mail
Given name First name If the value for this property is not specified on Okta and one of the following conditions is met, synchronization may not occur:
  • The users use this service and are not marked as "registered".
  • The users' email addresses do not match between this service and Okta.
Family name Last name If the value for this property is not specified on Okta and one of the following conditions is met, synchronization may not occur:
  • The users use this service and are not marked as "registered".
  • The users' email addresses do not match between this service and Okta.
Department Department
  • If the value for this property is not specified on Okta and one of the following conditions is met, synchronization may not occur:
    • The users use this service and are not marked as "registered".
    • The users' email addresses do not match between this service and Okta.
  • If the value entered for this property exceeds the maximum number of characters, only the portion from the beginning to the maximum is used.
Office Location Postal Address If the value entered for this property exceeds the maximum number of characters, only the portion from the beginning to the maximum is used.
  • Of the user information, the items with an initial value set have the following initial values:
    • Reply Email Language
      Initial value: Reply email language in "Tenant Info".
    • Role
      Initial value: General user
    • Password
      Initial value: Not set

User information in Okta that you can add as the target of synchronization

You can also configure user information profiles in Okta that are not included in "User information synchronized" to be automatically synchronized to user optional information.

If user optional information exceeds the maximum number of characters, the portion from the beginning to the maximum of the information is used as the user optional information.

If the value for this property is not specified on Okta and one of the following conditions is met, synchronization may not occur:

  • The users use this service and are not marked as "registered".

  • The users' email addresses do not match between this service and Okta.

Default attributes in Okta that you can configure as the target of synchronization
Okta user profile Item names in attribute mapping for automatic synchronization with Okta Remarks
Middle name user.middleName
Honorific prefix ser.honorificPrefix
Title user.title
Display name user.displayName If Display name has no value set so far, "user.firstName{single-byte space}user.lastName" is synchronized.
Nickname user.nickName
Secondary email user.secondEmail
Mobile phone user.mobilePhone
Primary phone user.primaryPhone
Street address user.streetAddress
City user.city
State user.state
Zip code user.zipCode
Country code user.countryCode
Preferred language user.preferredLanguage
Locale user.locale If this item has no value set, it is set to "en_US". However, please note that this depends on the Okta specifications and it may change.
Time zone user.timezone
User type user.userType
Employee number user.employeeNumber
Cost center user.costCenter
Organization user.organization
Division user.division
ManagerId user.managerId
Manager user.manager

Synchronized Group Information

Group information Okta group profile Description
Group name name If the value entered for this property exceeds the maximum number of characters, only the portion from the beginning to the maximum is used.
Member users -

  • Synchronization only updates group information for those users configured to be synchronized with Okta. Group information for those users who are not configured to be synchronized with Okta is not updated.

  • Each initial group ID value is a random character string generated by this service to identify the group.

  • Any group ID on Okta can be changed on this service, since no group ID is synchronized.

  • Group information description specified on Okta is not synchronized to this service.