Clicking Sign up using Identifier First profile won’t trigger HRD for Azure AD/ADFS connections

lihua.zhang · April 19, 2023, 10:06pm

Problem statement

When using an Azure AD/ADFS connection with HRD and the Identifier First authentication profile, if a user tries to SIGN UP with an email domain configured in Home Realm Discovery, they are redirected to sign up for a DB connection rather than redirecting the user to login with the IdP configured for that domain.

It works as expected for other Enterprise connections, like SAML or OIDC.

Solution

We have a backlog feature request to use the same criteria for all Enterprise connections.

As a workaround, you could create a SAML or OIDC connection to your Azure AD tenant.

Here are the instructions for creating those Enterprise connections:

Topic		Replies	Views
Home Realm Discovery not initiated when clicking Sign Up Knowledge Articles signup , redirect , azure , hrd	1	1369	April 26, 2023
Clicking Sign up using Identifier First profile won’t trigger HRD for Azure AD connection Help identifier-first , login-experience	2	395	January 11, 2024
HRD Redirect Affecting All Organizations with Same Email Domain - Expected Behavior or Misconfiguration? Help connections , azure-ad-enterprise-connection	0	59	July 9, 2024
HRD Not Working for Multiple Connections when Configured for Business Users Only Knowledge Articles organizations , home-realm , login-flow , hdr	1	2	November 15, 2024
Multiple Enterprise Connections with the Same Home Realm Discovery Domain Knowledge Articles enterprise , idp , saml-enterprise-connections , home-realm	1	927	October 10, 2023

Clicking Sign up using Identifier First profile won’t trigger HRD for Azure AD/ADFS connections

Problem statement

Solution

Related topics