PaulE.09701 (Acal BFi Holdings Limited) asked a question.
Office 365 - migration to Okta authentication
A company we've acquired have a pre-existing Office 365 tenant which uses ADSync. We'd like to migrate them over to using lifecycle management via Okta. as we do at the parent company.
If I were setting up a new domain name for them then it's easy enough but I need to migrate their existing users over as the domain will change in O365 from being a managed domain to a federated domain.
Is there anything I need to be careful of? I'm going to run a few tests on a dummy domain but wondered if others have done the same migration and can give any pointers.
Thanks!
Just need to make sure that when you migrate over the users that you have their immutableID populated correctly into okta. you could have okta run a one-time import to pull in those users to make it easier. As long as the Email address and immutable ID are mapped in okta then itll work
Good point - thanks!
Also it only imports Licensed Users. I have a directory with non Office 365 Licensed Users and only the admin of the domain is imported.
If you need all members maybe have a look at https://techcommunity.microsoft.com/blog/coreinfrastructureandsecurityblog/entra-id-saml-federation-with-an-external-identity-provider/4387780
Also review https://support.okta.com/help/s/article/Office-365-Provisioning-Type-Universal-Sync?language=en_US