MitchellG.35064 (Customer) asked a question.
Hi,
I am aware that there is no mapping for Primary email when using profile sync for o365. However, I am now trying to understand this mechanic based on experienced behavoir.
So far i understand, whenever a user attribute is updated in Okta (automagically from another system) this starts a "Push user's profile to external application" in okta to o365. This happens against other applications as well as o365, so this is all expected as these application have "Update User Attributes" ticked.
What I don't understand is when the above occurs, we see that the updated attributes get pushed in to o365 and as a result the users primary email address changes. Given that Profile Sync does not map this attribute, why does this happen? would I be correct to assume that the username attribute stipulates primary email as well, as part of the username attribute update?
Many thanks in advance
Mitch
Hi @MitchellG.35064 (Customer) , Thank you for reaching out to the Okta Community!
While in Okta the login (username) and the email attributes are distinct, in apps that handle emailing services like O365 and Google (irc) the username must be in email format and from what I remember, they treat the Primary SMTP as the username.
That being said, I haven't found any indication that Okta is sending anything explicitly for the Primary SMTP when a provisioning request is made. However, I did find something that seems to suggest that is happens automatically on the O365 side.
If my answer helped, remember to mark it as best to increase its visibility for other members of the Okta Community who might have the same questions as you.
Hope my answer helps!
--------------------------------
Community members help others by clicking Upvote or Select as Best on responses. Try it today.