I know, I ask a lot of questions about SSO, but look, we are almost done with this integration!
User is able to use the SSO button to sign on to their tenant. They can see the branch and interact with the LMS.
The User Provisioning section looks like this:
When we use a SAML tracer, it shows that these fields are being sent to Docebo. The problem is, they are not being updated in the LMS. For example, a test user changed their name in Azure AD to something other than their name. When they logged in via SSO, their name did not reflect the name in AD, the source of truth.
Even worse: when trying to log in as a different test user via SSO, one that did not already exist in docebo, the user was not able to log in, nor was it created in docebo.
I know we are missing something, but I have no idea what...