Safely Changing Email for SAML-Enabled Accounts

Safely Changing Email for SAML-Enabled Accounts

Comments

  • Our organization uses Microsoft Graph to federate passwordless authentication to customer IDPs or use token-based logins to users without a federated IDP. We create a simple account in our Azure AD to track identity during the invite process as well as write details down to Decisions local accounts via our SAML account creation flow.

    Id like to understand how we should go about tying a Decisions account to a different username/userID after the user has been provisioned? For example:
    [ul][li]User wants to change their email address
    [/li][li]User switches from an [url=http://outlook.com/]Outlook.com[/url] account to a [url=http://gmail.com/]gmail.com[/url] account (they would potentially have two different Azure IDs)
    [/li][/ul]
    [color=#172b4d]
    [/color]
    [color=#172b4d]Would it be possible to design a flow which can take in a request for an email change and automate updates? e.g. REST PATCH to the Azure AD record, adding the fka email to otherEmails, updating the userId/Primary email for the users account, and if necessary rekeying any assignments or dashboard workflow extensions to list the new email address.[/color]

  • I would be glad if someone can reply to this. I also need help as regards this. But Im not sure if outlook is supported at all.

  • Hi,

    This question would be better discussed over a Support Ticket. Please send an email with your queries to support@decisions.com and a Support Engineer should be able to assist you.

Sign In or Register to comment.