A customer can't log in to zendesk using SSO.
When you check in the Auth0 logs you will see
No attribute was found to generate the nameIdentifier.
We tried with: http://schemas.xmlsoap.org/ws/2005/05/identity/claims/emailaddress
To resolve this you need to add a mapping in Auth0
1. Find the sso profile - to find the correct sso profile follow this article - How do I find a customer's SSO profile?
2. login to Auth0
3. Navigate to Connections > Enterprise > SAML Identity provider (manage) > [the sso profile] (settings cog) > Mappings
4. Update the mappings to
replace EMAIL_ATTRIBUTE with the same value as appears in the sso profile in the Snyk admin portal for the attribute mapping for email. In the example below EMAIL_ATTRIBUTE should be replaced with nameIdAttributes.value.
Note it is case sensitive!