"Mixing" Mail-created users with MS 365?

matsimon · November 17, 2022, 3:39pm

User first send an E-Mail to the Helpdesk, Zammad creates a user
Users learn that Zammad has a nice Web UI and instead communicating via mail, they want to sign into Zammad, when they try using the Microsoft Sign-In Button they will be greeted with an error as described below.

Using the Microsoft SSO they get the error: 422: The change you wanted was rejected. - Validation failed: Email address xyz@example.org’ is already used for other user."

Send an e-Mail to a Mailbox/Channel monitored by Zammad
User gets created with Login as their Mail address (and their Mail address as … their contact)
Users want to use the MS SSO

If they first sign into Zammad via SSO, things work as their AAD ObjectID will be stored in Zammad as “Login”.

My question would be if we can tell Zammad to not use the Azure AD object ID as “Login”, but rather their e-Mail (if that can be reconfigured).

ChibangLW · November 25, 2022, 5:02pm

Wouldn’t the selection on the third-party login settings page do the trick for you?

“Settings” → “Security” → “Third-party Login” → first selection to yes

matsimon · November 25, 2022, 9:40pm

Hi @ChibangLW thank you very much … that seems to do the trick.

Honestly I should have seen this but I oversaw the option and scrolled straight down to the “Authentication via Microsoft” section!

system · March 25, 2023, 9:41pm

This topic was automatically closed 120 days after the last reply. New replies are no longer allowed.