0rbvg (0rbvg) asked a question.
Hello,
I am running into an error attempting to connect users from OKTA in Google.
Here is a 30k ft scenario below:
OKTA Mastered users
Username in OKTA: TestUser@yahoo.com
Username in Google: test1@gwdomain.com
secondEmail attribute has value of test1@gwdomain.com in OKTA Profile
Google Workspace App is configured in OKTA to use SAML.
Domain Name: gwdomain.com
Application Username Format: I chose Custom, then I use user.secondEmail
I want the users that sign into OKTA with their personal email addresses (i.e. testUser@yahoo.com) to be able to click on GMail tile and see their work email address in Google Workspace gwdomain.com domain - these users will use their secondary email address set in their profile as secondEmail to be redirected to Google, i.e. test1@gwdomain.com
When I test the preview mapping for my user Test One in OKTA, its secondary email address is returned as test1@gwdomain.com which is the value I want to be used in Google because this user's corresponding email address in GW is test1@gwdomain.com.
The logs/Tasks return this error:
An error occurred while assigning this app.
Automatic provisioning of user Test One to app Google Workspace failed: Failed to create new user. Domain not found.
For some reason I cannot make this scenario to work.
What am I missing?
Any help is appreciated.
Thank you,
Cris
I made it to work - I had the wrong value for the username value under Edit Application Assignment.
I probably messed up with these values trying to make it work. Essentially I recreated the user, and all values were left unchanged/default (obtained from the user's okta profile) when I assigned the user to the app. It is working as expected now. Thanks for the help 🙂