I have a Databricks account with the E2 version of the Databricks platform. The unified login is not enabled on the account because it was created before June 21, 2023.
I configured SSO authentication for the account and for a given workspace (separately). Both configurations use the same identity provider at the account level and at the workspace level. The identity provider is an Azure Active Directory tenant.
The SSO account level configuration use the OpenID Connect (OIDC) protocol as it is recommended by the documentation. https://docs.databricks.com/en/administration-guide/account-settings-e2/single-sign-on/azure-ad.html
The SSO workspace level configuration use the SAML protocol. https://docs.databricks.com/en/administration-guide/users-groups/single-sign-on/azure-ad.html
The Allow auto user creation and Allow IAM role entitlement auto sync features are not activated.
The SCIM provisioning feature is not activated. We want to have a successful authentication before activating it.
We followed every step of the documentation but we still receive the following error message : Single Sign-On authentication failed.
We verified every configuration values and read the Troubleshooting section of the documentation. https://docs.databricks.com/en/administration-guide/users-groups/single-sign-on/index.html#troublesh...
I installed the SAML Tracer extension and analysed the SAML response. I seems that it is correctly signed. You can find it inside the file attached to this message.
Any help would be really appreciated,
