Skip to main content
All CollectionsMicrosoft Office365MS Azure AD server setup FAQ
User cannot login with SSO after change of email

User cannot login with SSO after change of email

Email updated on user profile in our Entra ID

Ulrik Baadsgaard Christensen avatar
Written by Ulrik Baadsgaard Christensen
Updated over 3 weeks ago

Use case

We have setup SSO and Provisioning integration with BitaBIZ on our Entra ID.

We have changed a users email on our Entra ID.

The users new email has been synced and updated on the user profile in BitaBIZ.

After change of email the user can no longer log in with Single sign-on to BitaBIZ.

How to resolve the issue

BitaBIZ uses the email address as unique identifier in connection with Single sign on.

If your users have different UPN (user principle name) and email address on your Entra ID, then you need to change "Unique user identifier (Name ID)" claim to user.email instead of user.principlename.

How to change "Unique user identifier (Name ID)"

  1. Go to the BitaBIZ enterprise application on your Entra ID

  2. Open the Single sign-on section.

  3. Click "Edit" in the "Attributes & Claims" section

  4. In the "Required Claim" section change "Unique User Identifier (Name ID)" to be "user.mail" instead of "user.principlename"

Did this answer your question?