Skip to main content

Privacera Documentation

Okta fields for UserSync on PrivaceraCloud

These are descriptions of fields for configuring PrivaceraCloud UserSync for Okta.

Field name

Description

Tab in application set-up

Name

Identifying name of this connector.

Group Only

Sync only users that are members of groups. Allowable values: true or false

Attribute Only

Sync only the attributes of users already synced from other services. Allowable values: true or false

Incremental

Enable incremental search. Syncing only changes since last search. Allowable values: true or false

Manage Lists

Include Users

List of users to include from sync results. If this list is defined, all users not on this list are ignored.

Exclude Users

List of users to ignore from sync results.

Include Users

List of users to manage with status as equal to STAGED, PROVISIONED,ACTIVE,RECOVERY,PASSWORD_EXPIRED,LOCKED_OUT,DEPROVISIONED . If this list is defined, all users not on this list are ignored. Example: eq;ACTIVE,STAGED

Include Users

List of users to manage with user login name. Wildcard (*) is allowed. Format filterOperator;login,login2,login3

#sw for start with

. If this list is defined, all users not on this list are ignored. Example: sw;mon,san

Include Users

List of users to manage with user first name. Wildcard (*) is allowed. Format filterOperator;firstName,firstName2,firstName3

#sw for start with

. If this list is defined, all users not on this list are ignored. Example: sw;mon,san

Include Users

List of users to manage with user last name. Wildcard (*) is allowed. Format filterOperator;lastName,lastName2,lastName3

#sw for start with

. If this list is defined, all users not on this list are ignored. Example: sw;mon,san

Include Users

List of users to manage with user email. Wildcard (*) is allowed. Format filterOperator;email,email2,email3

#sw for start with

If this list is defined, all users not on this list are ignored. Sample value: sw;mon,san

Include Groups

List of groups to manage from sync results. If this list is defined, all groups not on this list are ignored.

Exclude Groups

List of groups to exclude from sync results.

Include Groups

List of groups to manage with group type. Format filterOperator;groupType,groupType2,groupType3

If this list is defined, all groups not on this list are ignored.

Sample: e q;APP_GROUP,BUILT_IN, Okta _GROUP

Include Groups

List of groups to manage with group names. Format filterOperator;groupName,groupName2,groupName3

If this list is defined, all groups not on this list are ignored.

Example: e q;group1,testGroup,testGroup2

Include Groups

List of groups to manage with group samAccountName. Format filterOperator;samAccountName,samAccountName2,samAccountName3

If this list is defined, all groups not on this list are ignored.

Example: e q;sam1,sam2,sam3

Include Groups

List of groups to manage with group source id. Format filterOperator;sourceId,sourceId2,sourceId3

If this list is defined, all groups not on this list are ignored.

Example: eq;0oa2v0el0gP90aqjJ0g7

,0oa2v0el0gP90aqjJ0g8

,0oa2v0el0gP90aqjJ0g0

Connection

Endpoint URL

Okta endpoint URL

Bearer Token

API token for auth to Okta API

Attributes

User Name

Attribute of a user’s name Default: login

Advanced

First Name

Attribute of a user’s first name Default: firstName

Advanced

Family Name

Attribute of a users’s family name. Default: lastName

Advanced

User Email

Attribute of a user’s email Default: email.

Advanced

User Groups

Attribute of user’s group list. Default: groups

Advanced

Group Name

Attribute of a group’s name Default: name

Advanced

Username Attribute Modification

Extract From Email

Extract the user’s username from an email address. Example: username@domain.com extracts username.

Default: false

Advanced

Prefix

Prefix to prepend to the user’s username.

No default.

Advanced

Postfix

Postfix to append to the user’s username.

No default.

Advanced

To Lowercase

Convert the user’s username to lowercase.

Default: false

Advanced

To Uppercase

Convert the user’s username to uppercase.

Default: false

Advanced

Regex

Attribute to replace user’s username to matching regex. Default : Blank

Advanced

Group Name Attribute Modification

Extract From Email

Extract the group’s name from an email address.Example: groupname@domain.com extracts groupname.

Default: false

Advanced

Prefix

Prefix to prepend to the group's name.

Default : Blank

Advanced

Postfix

Postfix to append to the group's name.

No default.

Advanced

To Lowercase

Convert the group's name to lowercase.

Default: false

Advanced

To Uppercase

Convert the group’s name to uppercase.

Default: false

Advanced

Regex

Replace group’s name to matching regex.

No default.

Advanced

Last update: May 16, 2022