7i98z (7i98z) asked a question.
Hello Reg
The short answer for this case is "Yes", if you have "Auto-activate new users" from the Settings page of your Active Directory tab (when accessing Okta dashboard - Directory - Directory integrations) But the long , more detailed answer is "Depends". - for example I'd need to have all 4 mandatory attributes correctly defined when creating new users. First Name, Last Name, Username (in an e-mail format) and primary e-mail. - in the same Setting tab of your AD in Okta, take a look at the three radio bullets options under Match Settings as these will determine how an user is imported if it's an exact match and if you would allow also partial matches- just below in the Confirmation Settings you can choose how to auto-confirm or auto-configure users, depending on your internal desired configuration or org policy. For example , in the scenario where I created a user in AD, set his 4 attributes and checked only on "password never expires",IF I have configured my AD to have delegated authentication ( if you want Active Directory to authenticate your users when they sign into Okta. A user's Okta credentials are the same as their Active Directory credentials when delegated authentication is on).AND IF I have back in my Okta org the "Match settings - imported users is an exact match to okta if - Okta username format matches " , down below I also allow partial matches by first and last name , and further on I have checked on "New users- Auto-confirm new users and Auto-activate new users",THEN in my next import (be it incremental or full), this new user will apear as "Active" and he can go ahead and log on. Furthermore, if you choose not to schedule imports and leave the Just in Time provisioning enabled, your users will be automatically created and updated at sign-on, and also any time you as an Admin check their profile pages from your own Okta instance (automated process in the background).Note : If you are using JIT provisioning with AD users, they must be imported first. After you enable JIT, import user accounts from AD. The import process defines the set of AD accounts that can be used to create Okta accounts (whether via JIT or the confirmation process). More links to help you out : https://support.okta.com/help/Documentation/Knowledge_Article/Install-and-Configure-the-Okta-Active-Directory-Agent-1597766701 [scroll down to "Schedule Import"] Importing people : https://support.okta.com/help/Documentation/Knowledge_Article/Importing-People-586580093 Choosing an Incremental or Full Active Directory Importhttps://support.okta.com/help/Documentation/Knowledge_Article/Importing-People-586580093 I hope I answered your quetion and covered most related topics. Let us know if you require further help or should you encounter any issues, feel free to open a case ticket with us and we'll be ready to assist you. Alex.
We use cookies to provide the best website experience and to help understand marketing efforts. We may also share data with ad partners to reach potential customers across the web. To learn more, visit our Privacy Policy. Click here for Your Privacy Choices. You may also opt out of this sharing by signaling your preference via GPC, applicable only to the browser signaling the opt-out.
More information
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
Select All
We use cookies to provide the best website experience and to help understand marketing efforts. We may also share data with ad partners to reach potential customers across the web. To learn more, visit our Privacy Policy. Click here for Your Privacy Choices. You may also opt out of this sharing by signaling your preference via GPC, applicable only to the browser signaling the opt-out.
More information
These cookies are necessary for the website to function and cannot be switched off in our systems. They are usually only set in response to actions made by you which amount to a request for services, such as setting your privacy preferences, logging in or filling in forms. You can set your browser to block or alert you about these cookies, but some parts of the site will not then work. These cookies do not store any personally identifiable information.
These cookies enable the website to provide enhanced functionality and personalisation. They may be set by us or by third party providers whose services we have added to our pages. If you do not allow these cookies then some or all of these services may not function properly.
These cookies allow us to count visits and traffic sources so we can measure and improve the performance of our site. They help us to know which pages are the most and least popular and see how visitors move around the site. All information these cookies collect is aggregated and therefore anonymous. If you do not allow these cookies we will not know when you have visited our site, and will not be able to monitor its performance.
These cookies may be set through our site by our advertising partners. They may be used by those companies to build a profile of your interests and show you relevant adverts on other sites. They do not store directly personal information, but are based on uniquely identifying your browser and internet device. If you do not allow these cookies, you will experience less targeted advertising.
Select All
May Okta Community Buzz
Stay ahead of the curve with Okta for AI Agents, new Okta Learning live sessions and labs, shout-outs, and top trending topics—all aimed at enriching your Okta journey.