Thank your your answer.
Yes, we are creating the administrators from the Administrator management of course.
Let me rephrase it:
1- we provision users with SCIM so it should update a user’s group automatically.
2- Our Identity provider is Azure AD and we are using SAML for authentication.
3- We have for example user 1 who is working perfectly fine using the Zscaler client connector and have the group group 1 for example assigned to him.
4- I create an administrator for user 1, we aren’t using SAML for the authentication.
5- the user 1 can’t now work with the Zscaler client connector because the group 1 is no longer assigned to him.
6- The user 1 now has only the group “Service Admin” assigned to him.
7- The SCIM isn’t updating the user’s groups.
Is this is the expected behaviour?