Users with SSO enabled
What is a user
A user represents a human account with assigned Roles, which logged in to the platform at least once.
Create a user
Users are created automatically the first time they login to the platform. This is referred as just in time (JIT) provisioning.
All details are populated with the values set in the SAML assertion claims
User JIT provisioning is always enabled and cannot be disabled.
User details update
When an organisation is SSO enabled, the user source of truth is always your IDP.
To update user details, change the details directly in your IDP. The user profile will then be updated upon next login based on the claims in the SAML assertion.
Every time a user logs in, the current user details held in the platform are compared with the values received from the claims. Any difference is then replaced with the value in the claims.
Delete a user
When a user is deleted, all its relationships are also deleted. This is irreversible
Even if the user logs in again after deletion, it will be considered a brand new user with no relationships.