<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D51Y00006Da44KSAROkta Classic EngineLifecycle ManagementAnswered2024-03-26T15:37:19.000Z2019-05-02T19:43:25.000Z2019-05-06T14:05:01.000Z

DavidV.49559 (Phoenix Contact) asked a question.

May 2, 2019 at 7:43 PM
User management lifecycle features

I'm looking to get some detailed questions answered about User management features in Okta. I searched the questions here and documentation, but can't seem to find the answers.

 

1) What does a user recovery look like with Okta? For example, a user is deleted in Okta and I'm not federating another IDP or AD.

 

2) I'm moving Okta.org domain to new Okta.org domain. Is it possible to migrate users with hashed passwords?

 

3) I'm migrating from Okta.org to another IDP. Is it possible to export/migrate users with hashed passwords?

  • 1 answer
  • 895 views

  • marius.fulga1.469640577281131E12 (Okta, Inc.)

    Hi David,

     

    For the first question: Once the user is deleted in Okta, it's impossible to recover it. That's why we recommend only deactivating the users, as you might reactivate the users at some point in time.

    For the second question : We can't move data between domains, nor users. I'm afraid that password hashes are not exposed and we cannot download or access them as this would be a security risk.

    For the third question : Same as for the previous question. This is why AD/LDAP comes in handy, with managing your user base in there and simply connecting your AD instance to a different IdP.

     

    Thanks,

    Marius Fulga

    Okta Tier 2 Support Engineer

    Expand Post
    Selected as Best

  • marius.fulga1.469640577281131E12 (Okta, Inc.)

    Hi David,

     

    For the first question: Once the user is deleted in Okta, it's impossible to recover it. That's why we recommend only deactivating the users, as you might reactivate the users at some point in time.

    For the second question : We can't move data between domains, nor users. I'm afraid that password hashes are not exposed and we cannot download or access them as this would be a security risk.

    For the third question : Same as for the previous question. This is why AD/LDAP comes in handy, with managing your user base in there and simply connecting your AD instance to a different IdP.

     

    Thanks,

    Marius Fulga

    Okta Tier 2 Support Engineer

    Expand Post
    Selected as Best
This question is closed.
Loading
User management lifecycle features