<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D50Z00008G7UyiSAFOkta Classic EngineAdministrationAnswered2024-04-17T13:06:00.000Z2016-09-09T22:39:24.000Z2016-09-09T22:39:24.000Z

9zha8 (9zha8) asked a question.

Edited by varun.kavoori1.5210444522562532E12 September 5, 2018 at 1:19 AM
What needs to happen in Okta when you rename an OU in AD?
What needs to happen in Okta when you rename an OU in AD?

 

Apparently, When I renamed an OU in our AD this caused a chain reaction in

All users in that OU are immediately disabled in okta

All apps are immediately de-provisioned

All users in that OU are immediately disabled in AD

O365 will either “block” the user, remove their license, or delete the user based on the sequence/timing of events.

Behavior with other sync’d applications could vary greatly depending on the application and integration with okta.

 

Similarly creating a new OU, means that that OU is not automatically sync’d in okta

 

Is this the way Okta supposed to work? Okta can not notice changes and adjust?
  • 1 answer
  • 1.1K views

  • miqxq (miqxq)

    I assume you are talking about a ROOT OU? If so, then yes, renaming would cause deprovisioning. Ditto for a new OU not being synched - if it's a root OU it wont syncy automatically - and you wouldn't want it to since it may contain service or other accounts that you don't want in Okta. If you need a new root OU to sync, do an import then select it in AD Settings, User OUs connected to Okta. 

     

    If you create a new OU underneath an OU that is already connected to Okta then it will be picked up automatically. Also renaming of OU's other than root appears to work fine for me.
    Expand Post
This question is closed.
Loading
What needs to happen in Okta when you rename an OU in AD?