Cannot login using SAML-based authentication

I am attempting to configure SAML-based SSO for GitLab.com using AzureAD, following the GitLab documentation at:

against a new GitLab.com group and AzureAD configuration; eg using user.objectid for matching.

I have also configured SCIM Provisioning to create the user that exists in AzureAD in GitLab; this process completes successfully.

When I attempt to log into GitLab via the SSO signin URL, I am prompted to enter my AzureAD credentials as expected. However on successful authentication my browser is redirected to the Git Login screen, which includes the message banner: ‘Login to a GitLab account to link with your SAML identity’

Gitlab21263×660 36.5 KB

Has anyone had experience with this, and able to provide any hints as to the issue or how to find the cause? NB A 2nd SSO-defined user does work; I believe it became linked with my original GitLab account on its creation.

Thanks!

Bryce

Bryce

@bryce_cummock
have you figured out this issue? If yes, how did you fix it? please share the solution.
we are facing same issue.

@hchouraria @gitlab-team @stanhu @steveazz @olearycrew @asp
Hi , could you please help with this issue?

In typical scenarios when this comes up, what is left to do would be to link to the created Gitlab account with SAML. Its my understanding that Azure will create the account, but not associate with SAML, so once you login with your GitLab credentials you can then link your account to SAML and going forward it will work as expected (SSO). Here are the steps needed: SAML SSO for GitLab.com groups | GitLab

So the account that is created with SCIM is not linked with SAML so you have to change the gitlab.com password for the account so you can log in to then link that account to link to SAML?