Subscribe to Help Center RSS FeedUpdating a user’s email address in Okta can break the user’s sync to ̽»¨´óÉñ due to the way Okta sends the username to ̽»¨´óÉñ.
Symptoms
The Okta ̽»¨´óÉñ SCIM integration sends the local half of the email address to ̽»¨´óÉñ as a username. When the email address is updated in Okta, it will attempt to send the update to the user in ̽»¨´óÉñ. If a user in ̽»¨´óÉñ is bound to existing resources in ̽»¨´óÉñ this update will fail with the following error in Okta:
Error while trying to push profile update for ‘Username’: Bad Request. Errors reported by remote server: rpc error: code = InvalidArgument desc = The username cannot be modified because the user is bound to one or more resources. Please fix this on the Tasks Page
Resolution
To resolve this you will need to create a manual override for the user’s username in Oka.
From your Okta Administration Console:
- Navigate to Applications > Applications
- From the Applications Page, open the ̽»¨´óÉñ application.
- Find the affected user and click the Pencil icon to edit the user’s details.
- Manually override the username to match the correct username in ̽»¨´óÉñ and click Save.