<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D51Y00008C1TF7SANOkta Classic EngineIntegrationsAnswered2024-04-15T09:28:56.000Z2020-04-03T14:43:54.000Z2020-04-22T21:04:19.000Z

564gv (564gv) asked a question.

April 3, 2020 at 2:43 PM
Can OKTA AD sync expire an account

Hi,

I have a decentralized environment where two AD instances are linked so that when an account is created from AD1, it creates an account in AD2. This is a one way process so AD2 would never translate any updates to AD1. Similarly, if I disable an account in AD1, the account is disabled in AD2.

 

However, I am trying to determine whether the account in AD2 can be expired instead or disabling? This is because the immediate disable is breaking some other automated processes. I know I should be addressing that issue but technical team is suggesting to expire account so that the account is still 'enabled' but not usable to allow automated process to complete (which would include disabling later). I suspect this is breaking the OKTA process but seeking advice?

 

We are using the OKTA AD Sync tool to disable users

  • 1 answer
  • 680 views

  • BhaskarM.18336 (Customer)

    I haven't come across this functionality , as okta will only deactivate the account

This question is closed.
Loading
Can OKTA AD sync expire an account