Hi, has anyone Azure AD SAML for multiple accounts (Production, SandBox, Relaease Preview…)

Last company I worked for that had Azure - when we refreshed a SB, when refresh was completed we had to remove IDP file from all environments and then just re-add the IDP to each. Not sure why / but it worked....

Thank you @Jay Flynn09 for you answer … The NetSuite documentation is …. at least poor … Our first attempt was exactly the same as you described … but … Azure SSO was created and used since 2017 but only in Production environment … No issues at all… But there is a bomb in Azure Netsuite SSO integration tutorial. There is an instruction to add “account” field in user Claim … huh, after a few hours, we almost gave up … No errors in setup, no warnings … and at the end we found WARNING information in NetSuite HELP pages > if you want to share the same metadata and ID provider you MUST OMMIT account from the response

Yes, the account claim binds it to that specific account.

@Shawn Talbert thank you, I would like to confirm resolution : account should not be foxed... if yoy want to use multiple accounts linked to the same IDP

Yes, that's my undertanding.

Understand... I successful setuo multiple accounts for the client with the same IdP XML... Now they are happy to be able login with the same way on production, sandbox and release preview

I think the account claim can be used for example if IT wanted to provide users with distinct login icons for each account

nice idea 😎