<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Group Prioritization vs Combine Values Across Groups
Jul 3, 2025
Lifecycle Management
Okta Classic Engine
Okta Identity Engine
Overview

As organizations face increasingly more complex lifecycle demands, IT departments' need to provide solutions that can scale to meet these demands becomes a pressing issue. Okta, a leader in IAM solutions, addresses this challenge by offering an advanced and flexible lifecycle solution. This solution streamlines attribute management for users by utilizing groups, effectively easing the burden on IT personnel. Okta provides 2 baselines for managing this data:

  • Group Prioritization
  • Combine values across groups
 This article will be a high-level overview of how these solutions work.
Applies To
  • Lifecycle Management solutions
  • Application provisioning 
  • All platforms
Solution

For this specific scenario, a provisioning-capable app is integrated with Okta, and multiple groups of users will be assigned to it and provisioned on the application side. These users can be categorized into various demographics based on defined criteria, like their role, the privilege level they should have access to, or whether they are permanent or contingent constituents of the organizational population. 

The target application requires additional input besides the user application profile sent from Okta to adequately manage access-control gradients for the soon-to-be provisioned users. Managing this data could be quite challenging if the task were performed manually for each user.

 Okta, however, allows for managing this data in bulk using two baselines:

  • Group Prioritization

  • Combine values across groups

 For us to better understand the difference between the two, consider the following example:
Group Prioritization vs Combine values across groups 
Supposedly, there are 3 groups to which 3 different data sets are assigned:

  • Group 1: 

    • Data set x 

    • Data set y

    • Data set z

  • Group 2:

    • Data set a

    • Data set b

    • Data set c

  • Group 3:

    • Data set t

    • Data Set u

    • Data set p

A user is assigned to Group 1 and, respectively, group 3.
If using group prioritization and respecting the positions in which the groups are arranged (group 1, position 1, group 2, position 2, and so on), the data set Okta is going to send into the target application datastore is XYZ.

If combined values are used across groups and the positions in which the groups are arranged are respected (group 1, position 1, group 2, position 2, and so on), Okta will send the data sets " XYZ" and "tup" combined into the target application datastore. 

Related References

Recommended content

Still looking for help?
Loading
Group Prioritization vs Combine Values Across Groups