AADSTS50020: User account 'XXX@<DOMAIN_NAME>' from identity provider 'https://sts.windows.net/xxxxx/' does not exist in tenant 'Example' and cannot access the application 'https://idcs-xxxx.identity.oraclecloud.com/fed' in that tenant.' (Doc ID 2446426.1)

Last updated on JULY 25, 2023

Applies to:

Identity Cloud Service (IDCS) - Version N/A and later
Information in this document applies to any platform.

Customer has defined Azure as an IdP in IDCS and has modified the Default Identity Provider Policy so it now points to Azure.

On doing that every user that tries to login into IDCS is redirected to Azure to authenticate.

The user is redirected to Azure to authenticate however on authenticating we get the following error:

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

Symptoms

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.