Work with Okta user profiles and attributes

Universal Directory (UD) delivers rich user profiles and fine-grained control over how attributes flow between applications. This makes it easier for organizations to create and maintain a single source of truth for its users, enabling new authentication and provisioning scenarios.

As you configure and deploy your Okta orgThe Okta container that represents a real-world organization., you will need to understand what attributes will need to be part of the Okta user profile. Factors you will need to consider include whether you are using a directory such as Active Directory or LDAP, or another appAn abbreviation of application. Essentially, it is a web-based site used to perform any number of specific tasks, and requires authentication from end users by signing in. as a profile masterA profile master is an application (usually a directory service such as Active Directory, or human capital management system such as Workday) that acts as a source of truth for user profile attributes. A user can only be mastered by a single application or directory at any one time. For more details, see the Profile Master page. When users are mastered by attribute, we call this attribute-level mastery (ALM). ALM delivers finer grain control over how profiles are mastered by allowing admins to specify different profile masters for individual attributes. Profile mastering only applies to Okta user profiles, not app user profiles. For more details, see Attribute Level Mastering. such as an HR app. To learn more about how UD and Profile Editor work to help you manage user profiles and attributes, see About Universal Directory and user profiles.

Working with the Okta user profile and attributes includes the following: