<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Active Directory Import Fails with Error "The permission 'Org:User:Profile:EditProfile' is needed to continue"
Dec 15, 2025
Directories
Okta Identity Engine
Overview

This article will provide steps to take when the Okta Admin receives the following error message running Active Directory (AD) import:

 

The permission 'Org:User:Profile:EditProfile' is needed to continue.


Error Message 

Applies To
  • Directories
  • Active Directory Import
  • Custom Admin Roles
  • Okta Identity Engine (OIE)
Cause

The Admin running the import does not have sufficient permissions to update the Okta user profile, which is required to run an AD Import.

Solution

The Okta Admin with custom admin roles has no permission to update the Okta User profile attribute from AD to Okta. For an import to update the User profile, the following Role permissions are required:

  • Org Admin
  • App Admin

See How to Create Custom Admin Roles for more details on creating or modifying a role to include these permissions.

User management - Edit profiles_2

Related References

Recommended content

Still looking for help?
Loading
Active Directory Import Fails with Error "The permission 'Org:User:Profile:EditProfile' is needed to continue"