Hello, I am provisioning a consultant (email=A@A.COM) to a new okta domain: company-z.okta.com. Consultant is already using his email address on okta for his other client (okta domain=company-y.okta.com.)
My initial thought was to create a "fake email" as the consultant's okta login for company-z.okta.com. Unfortunately, the email with activation URL goes to the fake email, with no way for me to view, right? Or is the scope of the userid limited to the domain such that he can use the same userid (email) for company-z.okta.com and for company-y.okta.com and be provisioned differently for each? If yes, how would that work for MFA because (for example) Google Authenticator seems to link to email.
You can reuse the same email addresss, the username just has to be unique. For instance the firstname.lastname@example.org email can be used over and over, but the username email@example.com can only be used once, so you'd need firstname.lastname@example.org for a second username and so on.
You can also use the same username in different Okta orgs. For example, you can have a user A@A.com in company-z.okta.com as well as A@A.com in company-y.okta.com. As James mentioned, you can also have the email be different from the username used to login, depending on your configuration. The uniqueness constraint is for usernames within an given organization.