Configured custom IDP single sign-on and tested it is working. However, a new user gets the error below when using SSO to log in to CloudSOC. The URL has ssoerror?code=ERROR_ACCESS_DENIED
Performed network capture during the login from the Browser, noticed 3 requests received HTTP 403 error:
The user was rejected from logging in to CloudSOC due to the access profile assigned to this user. The user had the end-user role. After changing to admin, the IDP granted access.