- User data cannot be changed in PolicyStat
User data can only be changed for manually created/managed user accounts, not those connected to Active Directory or Single Sign-On.
Until June 2020, SSO account data was able to be changed in PolicyStat and the fields were not locked down. This was only the case if SSO were enabled but AD was not. The fields are now locked for SSO and AD accounts.
Active Directory (AD)
With Active Directory enabled the source user data in AD rules and that data can only be changed in AD. When the nightly AD sync occurs with PolicyStat the data is auto-updated in PolicyStat if it was changed in AD.
Single Sign On (SSO)
If just SSO is enabled the fields of username, first name, last name, job title and email are populated by the Single Sign-On identity provider depending how those attributes are configured. Previously they were able to be changed manually in PolicyStat but now they are only changeable in the SSO source data such as a Human Resource user management system (e.g. PeopleSoft, Lawson, Azure etc.). Previously if user data was changed in PolicyStat it would revert back to what the data was before the next time the user logged in.