Use Okta Email Attribute as Login Name in Mimecast Portal

Aug 6, 2025

Single Sign-On

Okta Classic Engine

Okta Identity Engine

Overview

Some users with Okta login names that differ from their Mimecast login names may receive an error when attempting to log in to the Mimecast portal. The error message suggests a SAML issue. This article provides a solution/workaround for this issue by using the Okta email attribute as the login name in Mimecast.

Applies To

Okta and Mimecast integration users
Security Assertion Markup Language (SAML)
Single Sign-On (SSO)

Solution

Login to the Okta Admin Console and click on Applications > Applications. Find the SAML app that should be configured to use the Okta Email attribute.
Click on the Sign On tab and then click on Edit. Locate the Application username setting.
Change the Application username format setting to Email.

Credentials details

Save the changes.
Navigate to the Assignments tab and select the user/group assignment that needs to use the Okta email attribute as the login name in Mimecast.
Click on the Update Now button under the Sign On tab for existing user/group assignments. This ensures that the changes made in Step 3 will apply to the existing user/group assignment.

Credentials Details

Users can now log in to the Mimecast portal using their Okta email attribute as the login name.

NOTE: After Step 6, set the Application username setting back to its original value (the value it had before changing it to Email in Step 3).

Your Privacy

Your Privacy

Strictly Necessary Cookies

Strictly Necessary Cookies

Functional Cookies

Functional Cookies

Performance Cookies

Performance Cookies

Share or Sell of Personal Data

Share or Sell of Personal Data

Advertising Cookies

Your Privacy

Your Privacy

Strictly Necessary Cookies

Strictly Necessary Cookies

Functional Cookies

Functional Cookies

Performance Cookies

Performance Cookies

Share or Sell of Personal Data

Share or Sell of Personal Data

Advertising Cookies