Supported Okta email address characters

Consistent with Section 3 of the RFC 3696 specification published by the IETF, Okta email addresses support the following characters:

Standard English alphabet

A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

a b c d e f g h i j k l m n o p q r s t u v w x y z

Special characters

! # $ % & ' * + - / = ? ^ _ ` . { | } ~

0, 1, 2, 3, 4, 5, 6, 7, 8, 9

Except for the characters ' ` ~ shown above, no diacritical marks are supported in Okta email addresses.

Note: The period character (.) may not be used to start or end the part of an email address that precedes the @ symbol (known as the "local"part), nor can two or more periods be used consecutively. For example:

Supported

john.doe@example.com

Not supported

.john.doe@example.com

john.doe.@example.com

john..doe@example.com

Unicode characters

Unicode characters are supported in user names. There is a known issue with supporting unicode in primary or secondary emails.

Other requirements or restrictions

  • The email address must contain an @ symbol.
  • Email top-level domains (the 'com' portion of the email address) must have a minimum length of 2 characters and a maximum length of 20 characters.
  • 4-byte UTF8 characters are not supported in user names or email addresses.

Unicode characters

The following ranges of unicode characters are not supported in workflows that involve integrations with Active DirectoryActive Directory (AD) is a directory service that Microsoft developed for the Windows domain networks. It is included in most Windows Server operating systems as a set of processes and services. Initially, Active Directory was only in charge of centralized domain management. or LDAPLightweight Directory Access Protocol (LDAP) is a lightweight client-server protocol for accessing directory services, specifically X.500-based directory services. LDAP runs over TCP/IP or other connection oriented transfer services., for example Delegated AuthenticationAuthentication is distinct from authorization, which is the process of giving individuals access to system objects based on their identity. Authentication merely ensures that the individual is who he or she claims to be, but says nothing about the access rights of the individual. Authentication methods and protocols include direct auth, delegated auth, SAML, SWA, WS-Fed, and OpenID Connect., all provisioning events, adminAn abbreviation of administrator. This is the individual(s) who have access to the Okta Administrator Dashboard. They control the provisioning and deprovisioning of end users, the assigning of apps, the resetting of passwords, and the overall end user experience. Only administrators have the Administration button on the upper right side of the My Applications page. password reset, and import.

  • U+0000–U+001F
  • U+0080–U+009F

 

Top