Hi @Damien_V
You can see below in "internalClaims" the "sub": "Antonb@xxxx.co.il" (which seems correct) but in "claimsFromIdp" "sub": "GepTdu327M8MPBU245LQQbxLrv2iV8dG_olVNlFKg1k" (Difference from internalClaims ) it cause for duplicate license use.
we aimed that both authenticate sub will set as "Antonb@xxx.co.il"
*************************************************************************************************************
"subType": "user",
"internalClaims": {
"sub": "Antonb@xxx.co.il",
"tenantId": "_ZZHqcIecaTxwRb-ySwGxvk0mruRv0um",
"subType": "user",
"userId": "657eade8b90b36084ff3e157",
"encodedPermissions": "data:application/vnd.qlik.permissions;base64,AQBL/////9//////+/8P/+//v/3////Piigef4gH////Af///d/h///////////////////////////////9//////////Cv////e/AD/////////ff/////2/////////v/x/////////44",
"level": "admin",
"name": "Anton Borkovski",
"email": "Antonb@xxx.co.il",
"email_verified": true,
"userTag": "1707985253",
"sid": "HnBeuCvaJqTwRK0D7BUrsPlMai0xaWzGh4bdfo3zQDY=",
"jti": "bJDFbRyStM-EqF83VhBBQ_UGnj5ABlTl",
"iat": 1707985256,
"exp": 1707985556,
"aud": "qlik.api.internal",
"iss": "qlik.api.internal"
},
"claimSource": "id-token",
"claimsFromIdp": {
"aud": "f9726de1-bb96-41da-8bce-5def1876ca28",
"iss": "https://login.microsoftonline.com/9c70d10e-03a6-4f14-b491-e6319ca91ae7/v2.0",
"iat": 1707984912,
"nbf": 1707984912,
"exp": 1707988812,
"aio": "AWQAm/8VAAAALO2pHjBI5W6Nk5fU93lPyHQT0nrLSBqTQjGA8D//NiZsTjF8wj33E2IDWgfhkIy3ntCzcrnMKWyqOR+1VnX70EJAOaTiIUeuedCZCLvSx1b0oSOxvnbm4dRIF2Z9DlI4",
"email": "Antonb@xxx.co.il",
"family_name": "Borkovski",
"given_name": "Anton",
"name": "Anton Borkovski",
"nonce": "Ts6a6E3cFXrezXGcrA1yNAyD85hvCIoCA_TQPg-pGBs",
"oid": "0a7202d0-eb59-4c25-a5d6-de350136e20d",
"preferred_username": "Antonb@xxx.co.il",
"rh": "0.AQoADtFwnKYDFE-0keYxnKka5-FtcvmWu9pBi85d7xh2yigKABQ.",
"sub": "GepTdu327M8MPBU245LQQbxLrv2iV8dG_olVNlFKg1k",
"tid": "9c70d10e-03a6-4f14-b491-e6319ca91ae7",
"upn": "Antonb@xxx.co.il",
"uti": "HE5qvXexkU-Ni0YkUg-4AQ",
"ver": "2.0"
},
"extraClaims": {},
"mappedClaims": {
"sub": "Antonb@xxx.co.il",
"name": "Anton Borkovski",
"email": "Antonb@xxx.co.il",
"email_verified": true
}
}
