MatthewE.60094 (Customer) asked a question.
I'm trying to see if there's a way to store account-specific data in UD for accounts mastered by Active Directory.
A bit of context: We have over 120 Active Directories attached to our main Okta instance. We'd like to store a unique ID (in this case, their Workday Employee ID) with their Okta accounts so that we can use it as their SSO username as we expand Okta to other apps. Because over half our accounts are managed by local AD, I've been unable to find a place where we can store that key.
Ideally, we'd like to add a universal attribute (example name "WorkdayID") and assign it upon account creation. Once that's done, we can set the app config to use that field upon app assignment. I think I can do that by creating a "placeholder" app to hold the value, but it would be easier to do it on the proper account.
Has anyone done this in the past? Is there a way to add Okta-only variables for AD accounts?
Thanks!
It sounds like you might want attribute-level mastering so your user profiles are mostly mastered by AD but the universal ID can be mastered by Workday. You could then add a custom Okta attribute to be the mapped recipient of that ID, yes?