Disabled AD users not deactivated in Okta Skip to main content
https://support.okta.com/help/answers?id=906f0000000hzueiac&refurl=http%3a%2f%2fsupport.okta.com%2fhelp%2fanswers
How satisfied are you with the Okta Help Center?
Thank you for your feedback!
How satisfied are you with the Okta Help Center?
1
2
3
4
5
Very Dissatisfied
Very satisfied
Enter content less than 200 characters.
Ask Search:
William GregorianWilliam Gregorian 

Disabled AD users not deactivated in Okta

I can't seem to find out why the disabled AD users aren't being deactivated in Okta. Help? 
Best Answer chosen by William Gregorian
Raja NejemRaja Nejem (Okta, Inc.)
Here are some steps to verify.
- Make sure that the user is disabled in AD and they user was not "disconnected from AD" in Okta.
- Verify the import of Ad has occured; you can schedule AD imports.

All Answers

Raja NejemRaja Nejem (Okta, Inc.)
Here are some steps to verify.
- Make sure that the user is disabled in AD and they user was not "disconnected from AD" in Okta.
- Verify the import of Ad has occured; you can schedule AD imports.
This was selected as the best answer
Patrick CesardPatrick Cesard
Hello.
Question about Okta and AD interaction. Note I do see there is another question on this called "Re-enabling an account in Active Directory is not seen by OKTA" but it wasn't entirely clear what the resolution was.

1) I understand that if a user is disabled in AD, the Okta agent will detect this, and disable the user in Okta, correct?

2) If the user is subsequently re-enabled in AD, will Okta detect this as well, and automatically re-nable the user in Okta?