<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
0D54z000099OoLvCAKOkta Identity EngineDirectoriesAnswered2026-04-06T09:00:30.000Z2023-05-01T20:18:47.000Z2023-05-03T18:05:17.000Z

x8x24 (x8x24) asked a question.

Migrate existing AD-sourced users to a different Okta profile?

We have two Active Directory domains for two different types of users (staff and students). Accounts from both domains were imported into Okta, using the default Okta user profile. AD acts as the source for these accounts.

 

We're now hoping to have some different Okta attribute settings defined for each type of user (namely, secondEmail should be read-only for users from one domain, but read/write for users from the other domain). It seems like the best way to accomplish this would be to create a second Okta profile (https://help.okta.com/en-us/Content/Topics/users-groups-profiles/usgp-user-profile-attributes-main.htm), with that attribute set accordingly, and import users from one AD domain to one profile, and users from the other domain to the other profile.

 

However, for our existing end user accounts which all use the default profile, is there a way to migrate the users sourced from one domain to use a different profile than what their account was originally imported as? Would this require us to create a new directory integration and re-import those users?


  • b5n6c (b5n6c)

    @x8x24 (x8x24)​ , Hope you are doing well..

     

    You won't be able to edit the attribute if sourced from AD/any other system until change the priority in the profile editor. 

    Option1;

    If you want to manage the user's source from AD, then you need to add the user type from AD. 

     

    Option2;

    If you want to Okta as master for user type, Then  Go to profile editor --> Click on Okta --> click on User Type --> change the Source Priority "Inherit from Okta" instead of inherit from profile source.

    Reference Screenshot attached..

    Image is not available
     

    

    Image is not available

    Expand Post
    Selected as Best
  • b5n6c (b5n6c)

    Hi Theo Kell ,

    Users imported from applications such as Active Directory, LDAP, Workday, or from a CSV file are assigned the default user type.

    To change the default user type in okta :

    1. In the Admin Console, go to Directory > People.
    2. Optional. Select a user type in the User Type list to filter the people list by a specific user type.
    3. Select a person in the Person & username column.
    4. Click Change at the top of the user profile screen.
    5. In the Change user to list, select a user type.
    6. Verify the attribute values for the user are correct.
    7. Optional. Update any attribute values that were not transferred.
    8. Scroll down and click Change user type.

     

    Expand Post
    • x8x24 (x8x24)

      Hi @b5n6c (b5n6c)​  you! That sounds like exactly what we need, but there is no Change button visible on any user profile screens, whether they're sourced from AD or created manually (Screenshot attached).

      Image is not available
       

      If I click Edit in the Attributes section, I'm not able to change userType either. Is it possible those directions refer to an old version of the Okta platform? I can't find the option anywhere to change a user type as described.

       

      Thank you,

      Theo

      Expand Post
  • b5n6c (b5n6c)

    @x8x24 (x8x24)​ , Hope you are doing well..

     

    You won't be able to edit the attribute if sourced from AD/any other system until change the priority in the profile editor. 

    Option1;

    If you want to manage the user's source from AD, then you need to add the user type from AD. 

     

    Option2;

    If you want to Okta as master for user type, Then  Go to profile editor --> Click on Okta --> click on User Type --> change the Source Priority "Inherit from Okta" instead of inherit from profile source.

    Reference Screenshot attached..

    Image is not available
     

    

    Image is not available

    Expand Post
    Selected as Best
  • x8x24 (x8x24)

    @b5n6c (b5n6c)​ Thank you! That's exactly what I was looking for. I really appreciate your help.

This question is closed.
Loading
Migrate existing AD-sourced users to a different Okta profile?