i9f4j (i9f4j) asked a question.
Okta provisioning to GSuite. Upside & downside of the different options under Sync Password
I'm migrating our Org to Okta. We use G Suie. I'm trying to make our environment secure but as easy to use as possible. Is it best practice to sync a randomly generated password or the Okta Password? Does the option to Generate a new random password whenever the user's Okta Password change really add any more protection or does it have to potential to cause some end user consternation on other devices? I can see the advantage of always having a random password pushed to Gsuite but will this complicate or add a step to changing the password on lets say the iOS Mail app, every time the PW is cycled?
Thank you for posting on our Community page,
If you set the app password to random password as you say, each time you change the Okta password a random one will be provisioned to the G Suite. The apps would work just as expected with any other password. Just make sure there are no password policy conflicts.
Thank you,
Baver Deacu
Technical Support Engineer | Okta