<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Active Directory Attributes Do Not Sync to Okta When Attribute Level Sourcing Is Enabled
Apr 15, 2026
Okta Classic Engine
Directories
Okta Identity Engine
Overview

Active Directory (AD) attributes fail to sync to Okta when the attribute source priority is set to Inherit from Okta or the profile source has been overridden. To resolve this issue, change the attribute source priority to inherit from the profile source.

 

Verify that AD attributes do not successfully sync to the mapped Okta profile attributes, and the following conditions apply:

  • AD is the Profile Source for the affected users.
  • The Profile Editor mapping preview from AD successfully displays the attribute.
  • The Okta attribute does not update successfully after a Full Import.
  • The Okta attribute does not update successfully after a Force Sync on the To Okta section of the Provisioning tab of the Directory.
  • There are no constraint violations in the System Log.
  • The Okta attribute source priority is not set to Inherit from the profile source.
Applies To
  • Okta Identity Engine (OIE)
  • Okta Classic Engine
  • Active Directory (AD)
  • Active Directory-Sourced Users
  • Attribute Level Sourcing
Cause

If the source priority for the affected Okta user attribute is set to Inherit from Okta or Override profile source, Active Directory cannot update the attribute. This is expected behavior, as attributes are updated only according to the configured source priority in the Okta User Profile Editor settings.

Solution

How is the attribute source priority updated to allow Active Directory synchronization?

 

To allow AD to update Okta user attributes, navigate to the Profile Editor, locate the affected attribute, change the source priority to inherit from the profile source, and perform a force sync.

  1. Navigate to Directory > Profile Editor.
  2. Select the Okta User (default) profile.
  3. Find the affected attribute and select the Information icon for Okta base attributes or the pencil icon for custom attributes.
  4. Locate the source priority at the bottom of the attribute settings.
  5. Change the source priority to Inherit from profile source to enable AD updates.

 

Source priority options

 

  1. Navigate to Directory Integrations > Active Directory > Provisioning > To Okta.
  2. Scroll down to Okta Attribute Mappings and select Force Sync to ensure user profiles update successfully.

 

Related References

Recommended content

Still looking for help?
Loading
Active Directory Attributes Do Not Sync to Okta When Attribute Level Sourcing Is Enabled