We have Auth0 installed in production using database connections. We will be giving existing clients the option to use enterprise SSO. I need guidance on the best way to migrate the existing database users to the enterprise SSO connection.
Based on my tests, after configuring enterprise SSO for the client domain, the next time a user in that domain logs on, Auth0 creates a new user in the SSO connection. From that point on, Auth0 will authenticate using the new SSO connection since it associates the user’s email domain with enterprise SSO. This makes the user entry in the database connection effectively obsolete as it will no longer be reachable as long as SSO is enabled for that domain.
I understand that I can link the two users, but I see no point in doing that since the entry in the database connection is effectively obsolete.
What are some approaches to removing the database connection user? Maybe in a post login action? Is it worth doing that, or is there any harm in just keeping it?