Active Directory Credentials Delivery to Manager
Details
Many organizations use Microsoft Active Directory to manage user credentials. While Okta’s AD integration allows provisioning users to AD, organizations need a solution to communicate the account credentials to the user. When onboarding new hires, companies may need to set up these accounts ahead of time. However, the user may not have system or email access until the day of joining. In these scenarios, companies can email the account credentials to the user’s manager with a one-time password. This template helps demonstrate how to identify users being added to Active Directory using Okta’s “User Assigned to Application” event, fetch manager’s email address and send email notification.
The flow leverages Okta’s Expire Password API is to set a one-time password using the tempPassword=true flag. Learn more.