This article describes how to map a custom attribute from Active Directory (AD) to Okta. 

• Microsoft Active Directory 
• Directories
• Universal Directory
• Lifecycle Management

The video below describes how to map a custom attribute from Active Directory to Okta.

First, a custom attribute needs to be created in the local Domain Controller > Active Directory Schema. We'll create secondEmail attribute for our example here.

1. Access the appropriate Domain Controller.

2. Launch MMC > Add/Remove Snap-in > Active Directory Schema > Add it.

3. Right-click on Attributes > Create Attribute.

4. When the new attribute is created, add it to the Person Class. Click on Classes > right-click on Person > Properties > Attributes > Add > find the one that was created above and add it.

5. Add a value to the attribute in the Active Directory user properties > Attribute Editor > secondEmail (or the attribute that was created).

NOTE: Admins may need to contact their IT department and/or the System Administrator for additional assistance performing steps above (1-5).

6. Access the Okta Admin Console > Directory > Profile Editor > Directories > Active Directory in question > Profile.

7. Click Add Attribute > Click Refresh Attribute List.

8. Search for the attribute that was created in steps 1-5. Select it and add it.

9. Click on Mappings > Active Directory to Okta.

10. Map the secondEmail attribute created above and map it to Okta's secondEmail attribute.

11. Preview the mapping to make sure it displays the value from step 5, then click on Save Mappings and either Apply updates now or Don't apply updates.

12. Run a Full import from AD to Okta by navigating to Directory > Directory Integrations > select the Active Directory in question > Import > Import Now > Full Import.