As per Case Number: 03173051, ExtremeCloud IQ Connect (freemium) SAML Single Sign-On fails with error "SAML IdP auth failed, please contact administrator for help" when integrating with Azure AD/Entra ID.
This appears to be due to no Pilot licenses being allocated in the tenancy.
The Global Settings | Administration | Enable Single Sign On (SSO) option can be configured in ExtremeCloud IQ Connect, and SSO accounts will be provisioned under Global Settings | Accounts | Account Management, but these accounts will fail to sign in with the "SAML IdP auth failed, please contact administrator for help" error.
This is due to the principal_name on the backend services being in the user@domain.com format and not the <guid>@saml.login format.
If this feature is unavailable, it should not be possible to configure it, or there should be a more appropriate warning message showing the cause of the failure to login.
ExtremeCloud IQ Connect can be identified by the title in the top left of the extremecloudiq.com console. ExtremeCloud IQ Pilot can be identified by the title in the top left of the extremecloudiq.com console, or from Global Settings | Administration | License Management.
