Update User

Update an Okta user's system information and profile properties by ID or username.

Note

This action will not update information about application users , attempting to do so will result in a 404 error when the user type is invalid or incorrect. To retrieve details about an application user, use the Custom API Action card. See Application user operations for more information on reading information about assigned users for an application.

Options

Field Definition Type Required
Update Semantics Partial: Updates a user's profile or credentials with partial update semantics. Any properties that are not specified are ignored, and will maintain their current value.

Strict: Updates a user's profile and credentials using strict-update semantics. IMPORTANT: All profile properties must be specified when updating a user's profile. Any property not specified in the request is set to null.

Dropdown FALSE

Input

Field Definition Type Required
User
ID The ID of the Okta user (usually in an email format). String FALSE
Option
Pass Empty Values?

Only appears when Update Semantics is set to Partial.

  • If Yes, all fields selected and filled in with valid values will be updated. All fields selected but left blank will be cleared, except special fields. See the note below. All fields unselected will remain unchanged.
  • If No, all fields selected and filled in with valid values will be updated. All fields unselected or left blank will remain unchanged.
  • Also see 1. Basic information fields.
Dropdown FALSE
Profile
City The city or locality component of user's address. String FALSE
Cost center The name of a cost center assigned to the user. String FALSE
Country code Country abbreviation. String FALSE
Department The user's department name. String FALSE
Display name The name of the user, suitable for display to end users. String FALSE
Division The name of the user's division. String FALSE
Primary email The user's primary email address. String FALSE
Employee number The unique identifier assigned to the user by their organization or company. String FALSE
First name The user's first name. String FALSE
Honorific prefix The user's honorific prefix(es), also known as title in most Western languages. String FALSE
Honorific suffix The user's honorific suffix(es), also known as title in most Western languages. String FALSE
Last name The user's last name or family name. String FALSE
Locale The user's default location for purposes of localizing items like currency, date/time format, and numerical representations. String FALSE
Username login username of the user, usually in the form of an email address String FALSE
Manager The display name of the user's manager. String FALSE
ManagerId The ID of the user's manager. String FALSE
Middle name The user's middle name. String FALSE
Mobile phone The user's mobile phone number. String FALSE
Nickname The user's preferred nickname, if applicable. String FALSE
Organization The name of the user's organization. String FALSE
Postal Address The mailing address component of user's address. String FALSE
Preferred language The user's preferred written or spoken languages. String FALSE
Primary phone The primary phone number of the user, such as their home number. String FALSE
Profile Url The URL of user's online profile (a web page). String FALSE
Secondary email The secondary email address of the user (typically used for account recovery). String FALSE
State The state or region component of user's address. String FALSE
Street address The full street address component of user's address. String FALSE
Time zone The user's time zone. String FALSE
Title The user's title, such as Vice President. String FALSE
User type The user's relationship to the organization, such as Employee or Contractor. String FALSE
Zip code The zip code or postal code component of the user's address. String FALSE
Custom Profile Properties Aditional custom user profile properties that are generated when configuring this card. dynamically generated FALSE
Credentials
Password The string value for the user's new password. String FALSE
Recovery Question The question to enable password recovery for the user. String FALSE
Recovery Answer The answer to the password recovery question. String FALSE

Also see 2. Credentials fields.

Output

Field Definition Type
System Properties
ID The ID of the Okta user. String
Status The current status of the user: STAGED, PROVISIONED, ACTIVE, RECOVERY, LOCKED_OUT, PASSWORD_EXPIRED, SUSPENDED, or DEPROVISIONED. String
Created The timestamp when the user was created. Date & Time
Activated The timestamp when the transition to ACTIVE status completed. Boolean
Status Changed The date of the user's last status change. Date & Time
Last Login The timestamp of the uer's last login date. Date & Time
Last Updated The timestamp of the user's last update. Date & Time
Password Changed The timestamp of the user's last password change. Boolean
Credentials
Emails The list of emails associated with the user. List
Password true if the user has a valid password or imported hashed password; false, otherwise. Boolean
Recovery Question The recovery question when a user forgets their password. String
Provider
Name The name of the authentication provider. String
Type The type of authentication provider: OKTA, ACTIVE_DIRECTORY, LDAP, FEDERATION, SOCIAL or IMPORT. String
Profile Properties
City The city or locality component of user's address. String
Cost center The name of a cost center assigned to the user. String
Country code Country abbreviation. String
Department The user's department name. String
Display name The name of the user, suitable for display to end users. String
Division The name of the user's division. String
Primary email The user's primary email address. String
Employee number The unique identifier assigned to the user by their organization or company. String
First name The user's first name. String
Honorific prefix The user's honorific prefix(es), also known as title in most Western languages. String
Honorific suffix The user's honorific suffix(es), also known as title in most Western languages. String
Last name The user's last name or family name. String
Locale The user's default location for purposes of localizing items like currency, date/time format, and numerical representations. String
Username login username of the user, usually in the form of an email address String
Manager The display name of the user's manager. String
ManagerId The ID of the user's manager. String
Middle name The user's middle name. String
Mobile phone The user's mobile phone number. String
Nickname The user's preferred nickname, if applicable. String
Organization The name of the user's organization. String
Postal Address The mailing address component of user's address. String
Preferred language The user's preferred written or spoken languages. String
Primary phone The primary phone number of the user, such as their home number. String
Profile Url The URL of user's online profile (a web page). String
Secondary email The secondary email address of the user (typically used for account recovery). String
State The state or region component of user's address. String
Street address The full street address component of user's address. String
Time zone The user's time zone. String
Title The user's title, such as Vice President. String
User type The user's relationship to the organization, such as Employee or Contractor. String
Zip code The zip code or postal code component of the user's address. String
Custom Profile Properties Aditional custom user profile properties that are generated when configuring this card. dynamically generated

Notes

1. Basic information fields

The following four fields are basic information fields and can't be cleared:

  • Username
  • First Name
  • Last Name
  • Primary Email
If Update Semantics is set to and Pass Empty Values is set to What happens to the basic fields
Partial Yes
  • If any of these four fields is selected and left blank, the card will report error.
  • Any of these fields selected and filled in with valid value will be updated.
  • Any unselected field will remain unchanged.
Partial No
  • Any of these four fields selected and filled in with valid value will be updated.
  • Any of these fields selected but left blank or unselected will remain unchanged.
Strict n/a
  • If any of these four fields is selected but left blank or unselected, the card will report error.
  • The card can pass only when all of these fields are selected and filled in with valid values.

2. Credentials fields

a. Password

  • It doesn't show the actual value, but always show true whether the field has existing value or the value is cleared out.
  • It shows false only when a user was created without credential, and never had a valid password before.
  • To clear the field, select it and leave it blank while using one of the following options:
    • Update Semantics is set to Partial and Pass Empty Values is set to Yes
    • Update Semantics is set to Strict
  • If the field is unselected, it will always remain unchanged.

b. Recovery Question and Recovery Answer

  • These fields can’t be cleared.
  • They can only be empty if a user was created without credential, and never had a valid recovery question and answer set up before.
  • These two fields must be updated at the same time or else they'll remain unchanged.

Related topics

Okta connector

About the elements of Okta Workflows

Okta API