<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Unable to Map to the 'name' Attribute in Active Directory from Okta.
Jun 28, 2024
Okta Classic Engine
Okta Identity Engine
Directories
Overview

This document explains why it is not possible to map attributes in Okta to the 'name' attribute in Active Directory. 

Applies To
  • Active Directory
  • Profile Mappings
  • Active Directory 'name' Attribute
Cause

The 'name' attribute cannot be mapped from Okta to Active Directory. The 'name' attribute is a Read-Only, System-Only Optional attribute. The 'name' attribute is tied to the "Full Name" attribute. The 'name' attribute will reflect the 'Full Name' attribute when an object is created.

The 'name' attribute is also tied to the common name. Two users with the same cn/name in the same OU cannot exist simultaneously because their distinguishedNames will be the exact same. However, two users with different cn/name properties with the same display name can exist.

Solution

To update a user's 'name' attribute please perform the change in Active Directory directly by editing the "Full Name" attribute.

Recommended content

Still looking for help?
Loading
Unable to Map to the 'name' Attribute in Active Directory from Okta.