Does Office 365 username need to be identical to Okta username? Skip to main content
https://support.okta.com/help/answers?id=9062a000000bmq7qai&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
Jatin VaidyaJatin Vaidya 

Does Office 365 username need to be identical to Okta username?

For an integration with Office 365 (WS-Fed + Provisioning),
does Office 365 username (ex. jsmith@example.com) need to be identical to Okta username?

If yes, why? Is account linkage using immutableid not sufficient?

Thanks,
Jatin
Best Answer chosen by Jatin Vaidya
Kevin TurnerKevin Turner (Okta, Inc.)
No this is not a requirement. In fact you can make use of Okta's Universal Directory to help transform an Okta user's name to a new/modified value for the name and optionally email address.
You might like to look at https://support.okta.com/help/articles/Knowledge_Article/About-Universal-Directory  and read more in the section "Username Overrides" about 3/4 of the way down.

All Answers

Kevin TurnerKevin Turner (Okta, Inc.)
No this is not a requirement. In fact you can make use of Okta's Universal Directory to help transform an Okta user's name to a new/modified value for the name and optionally email address.
You might like to look at https://support.okta.com/help/articles/Knowledge_Article/About-Universal-Directory  and read more in the section "Username Overrides" about 3/4 of the way down.
This was selected as the best answer
Jatin VaidyaJatin Vaidya
Thanks Kevin, that's what I was hoping. I wanted to get a confirmation because the O-365 integration guide at couple of places says: (Please see the text in *bold red*) << It is important to note that if another technology is performing the synchronization of accounts to Office 365, and Okta is handling the federation for authentication, *you need to ensure the Okta account usernames match the Office 365 usernames*. This can easily be configured in Okta using Universal Directory attribute expression, this is described later in this document. >> Can you please explain why the above constraint? Even in the above scenario, Okta does have access to the immutableid (say AD-guid). Thanks, Jatin
Kevin TurnerKevin Turner (Okta, Inc.)
The application user ID (in this case Office 365) does not need to match the Okta username. Sometimes it is the same or similar. The statement about the Okta username does not have to match the Office 365 username. If the user is AD mastered then yes Okta will know about the immutableID.