3rd party Azure IDP configuration fails with " The user you specified is not authorized to perform this action"Description<!-- div.margin { padding: 10px 40px 40px 30px; } table.tocTable { border: 1px solid; border-color: #e0e0e0; background-color: #fff; } .title { color: #d1232b; font-weight: normal; font-size: 28px; } h1 { color: #d1232b; font-weight: normal; font-size: 21px; margin-bottom: 5px; border-bottom-width: 2px; border-bottom-style: solid; border-bottom-color: #cccccc; } h2 { color: #646464; font-weight: bold; font-size: 18px; } h3 { color: #000000; font-weight: bold; font-size: 16px; } h4 { color: #666666; font-weight: bold; font-size: 15px; } h5 { color: #000000; font-weight: bold; font-size: 13px; } h6 { color: #000000; font-weight: bold; font-size:14px; } ul, ol { margin-left: 0; list-style-position: outside; } --> Symptoms When you try to Configure sign-on from Azure portal but it fails with an error " The user you specified is not authorized to perform this action" . Below is an example of the menu when configuring in Azure: Cause From the instance System Log >ALL we see the below message: java.sql.BatchUpdateException: Duplicate entry 'http s://sts.windows.net/<id>/' for key 'idp' : java.sql.SQLException: java.sql.BatchUpdateException: Duplicate entry 'http s://sts.windows.net/<id>/ for key 'idp' This indicate there is already an Identity Provider URL entity ID with the same name in the Identity Provider record of the Instance. Resolution To resolve the problem, from the logs, identify the duplicate Identity Provider. Then find and delete the duplicate record from the Instance Identity Provider record and try again to add it on the Azure console.