SalesForce SAML - Does Okta reference Username or Email Address?
My SalesForce admin emailed me a spreadsheet of SFDC users. Both Username and Email addresses fields contain email addresses and they are all over the place. Some match up, some don't, some email addresses are our old domain name, etc.
If we were to standardize one field in order to clean up and start the SAML integration, which field would it be?
I would pick the value that is the least volatile, by default email address is used. Within Okta you have the flexibility to define which value is used to populate the NameID of the SAML assertion sent to Salesforce.
Beyond that, Okta can both provision and maintain user profiles in salesforce to help prevent deviations in data between the systems.
These are just a a few points to consider. depending on the size and complexity of your environment it might be something that justfies an engagement with Okta PS.