<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base

Microsoft Office 365 User Not Deprovisioned after Encountering a Provisioning Error Due to Licensing

Last Updated:

Okta Classic Engine
Okta Identity Engine
Okta Integration Network

Overview

A provisioning error might be encountered due to licensing seats being exceeded still get created in Azure, just without a license.

Applies To

  • Microsoft Office 365 (O365)
  • Azure AD
  • Provisioning
  • License Provisioning

Cause

  • Removing the account from the Office 365 application in Okta does not trigger the "Push user deactivation to external application" event.
  • Microsoft Limitation: The MS Graph library that Okta is leveraging does not support clearing the on-premise immutable ID. 

Solution

The licensing issue may be addressed by one of the following methods:

  • Removing the licenses from the user assignment.
  • Purchasing the Microsoft license.

Once the licensing issue has been addressed, retry the account provisioning process. Once the account has been successfully provisioned, it will follow the expected behavior where the Azure/Office 365 user will be deactivated if removed from the OIN Office 365 application in Okta.

Recommended content

Still looking for help?
Loading
Okta Support - Microsoft Office 365 User Not Deprovisioned after Encountering a Provisioning Error Due to Licensing