diff --git a/awx/sso/conf.py b/awx/sso/conf.py
index fa4d70f3f8..3a2b2b77a8 100644
--- a/awx/sso/conf.py
+++ b/awx/sso/conf.py
@@ -377,9 +377,9 @@ register(
     help_text=_('User profile flags updated from group membership (key is user '
                 'attribute name, value is group DN).  These are boolean fields '
                 'that are matched based on whether the user is a member of the '
-                'given group.  So far only is_superuser is settable via this '
-                'method.  This flag is set both true and false at login time '
-                'based on current LDAP settings.'),
+                'given group.  So far only is_superuser and is_system_auditor '
+                'are settable via this method.  This flag is set both true and '
+                'false at login time based on current LDAP settings.'),
     category=_('LDAP'),
     category_slug='ldap',
     placeholder=collections.OrderedDict([
diff --git a/awx/sso/fields.py b/awx/sso/fields.py
index 5d95296e8e..338178b288 100644
--- a/awx/sso/fields.py
+++ b/awx/sso/fields.py
@@ -322,7 +322,7 @@ class LDAPUserFlagsField(fields.DictField):
     default_error_messages = {
         'invalid_flag': _('Invalid user flag: "{invalid_flag}".'),
     }
-    valid_user_flags = {'is_superuser'}
+    valid_user_flags = {'is_superuser', 'is_system_auditor'}
     child = LDAPDNField()
 
     def to_internal_value(self, data):