AD- IDCS - Primavera (user sync) is causing SSO via SAML Okta not to work for some users
(Doc ID 2789544.1)
Last updated on JULY 16, 2021
Applies to:Identity Cloud Service (IDCS) - Version N/A to N/A
Information in this document applies to any platform.
Users unable to log in via existing SAML SSO between IDCS and Okta due to AD sync creating a second user due to a discrepancy of usernames.
jdoe (Primavera - IDCS existing user)
johndoe (AD - IDCS - Primavera sync) => this user doesn't get passed the Company attribute in Primavera and is causing SSO (SAML IDCS-OKTA) to show an error when logging in.
AD sync via identity bridge caused login issues for some users due duplicate creation and due to required Primavera missing field (Company). We're yet to determine what are the necessary attributes that need to flow from AD through IDCS and into Primavera.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document