- ALM used (GitHub, Bitbucket Cloud, Azure DevOps) → Azure, Microsoft Entra ID
- CI system used (Bitbucket Cloud, Azure DevOps, Travis CI, Circle CI → Azure DevOps
- Error observed (wrap logs/code around with triple quotes ``` for proper formatting) →
We have recently upgraded our existing SonarCloud subscription to Enterprise. We have created enterprise app inside Azure Portal and setup SSO SAML as per document (Transitioning to SAML SSO | SonarQube Cloud Documentation).
When we are testing SSO, we are getting below issues:
a) On Azure Portal, it displays message as “Microsoft Entra ID successfully issued a token (SAML Response) to the application. If you still can’t access application, you need to contact software vendor” and at the Sonarcloud side, we can see message as “Sorry, we couldn’t verify your authorization to access this page”
b) When we try to login to Sonarcloud SSO url, it shows below message:
“User uuid is not allowed to get enterprise uuid”
Also, there are few other queries:
- Should the user be assigned Enterprise, Organization and Project level permissions on SonarCloud before logging with SSO?
We tried to assign permissions at Enterprise, Organization as well as Project level, still user is not able to see Organization and Project assigned - As the initial organization was created using Azure DevOps login and after we upgraded to Enterprise version, is there any syncing issue which preventing us from showing the data
- If the user is new and not logged in single time as well, we cannot add that user as member inside Organization and assign permission. Is this the valid case?