3310088 - When my users login via SSO they are unassigned from the user groups I manually assigned them too in Explorer.

When my users login via SSO they are unassigned from the user groups I manually assigned them too in Explorer.

SAP Signavio Process Manager 3.0

1. Click on your SSO link.
2. Once logged in, navigate to Explorer.
3. Click 'Setup'.
4. From the dropdown, select the Manage users & access rights.
5. Click on the User group tab
6. Click on the group you should be assigned too.
7. See that you are not included in the list of users.

Your users are being removed from the user groups you manually assigned them too when they login via SSO as the SAML response your idP is sending Signavio incudes in its claim, user groups the users should be assigned too. Each time the user logs in via SSO the user groups are being replaced.

In order to avoid this you will need to include in your idP user groups attributes, the user groups you are manually assigning these users too.

For more information on user groups in SAML, please read the following excerpt from our user guide: https://documentation.signavio.com/suite/en-us/Content/process-manager/userguide/workspace-admin/manage-users/enable-sso.htm?#ConfigureyourIdP

process, manager, user, group, saml, sso, link, assign, manual, over, written, un, assign , KBA , BPI-SIG-CA-SEC , Workspace Security for SAP Signavio Transformation Suite , Problem