Forum Discussion
How To Work Around The Azure SAML Group Claim Limitations?
We recently implemented a model in which our users can create Office 365 groups, which then can be used in all our SAML-connected third-party cloud applications to grant access to resources withing t...
DanielNiccoli - Use app roles. These are human readable, no group IDs and token bloat
https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-add-app-roles-in-azure-ad-apps
LM That's not feasible. Users are creating new groups on a weekly basis. We need something that works out of the box and is scalable.
