When you enforce SAML single sign-on in your organization, members that haven't authenticated via your identity provider (IdP) will be removed from the organization and will receive an email notifying them about the removal.
Before enforcing SAML SSO in your organization, you should:
- Add or remove members from your organization if needed.
- If you haven't already, connect your IdP to your organization. For more information, see "Connecting your identity provider to your organization."
- Ensure that your organization members have signed in and linked their accounts with the IdP.
Note: Outside collaborators aren't required to authenticate with an IdP to access the resources in an organization with SAML SSO. For more information on outside collaborators, see "Permission levels for an organization."