Deactivate user in Active Directory pushed to Okta without waiting for directory import
Hi, Currently, we deactivate a user in Active Directory, to ensure it gets pushed to Okta and assigned applications we run a manual import if we can't wait for the import which is set at every hour.
Does the AD password sync agent (which we don't use currently) also process deactivations on action in AD and not reply on the import? Or any other way we can accomplish this to disable access immediately without dependency on the Okta directory import? Thanks
Thank you for the reply. We may have to do it from Okta and let it sync to AD from there.
If disabling someone in active directory there is no action in Okta or assigned apps until the user tries to log in, this leaves assigned applications active and accessible. Some applications are accessed directly and not through Okta and need to be deactivated at the time of deactivation in AD.