When logging into vCenter as an SSO user, there is no error. But there is an error in the SDDC Manager UI when logging in as the same SSO user.

https://VCF-FQDN/ui/api/internal/logincallback is providing an error 500 which can be seen in Chrome -  Inspect - Network.

Plus we see the error in the UI ->  PERMISSION_NOT_FOUND status 500 error in the UI on login (screenshot above).

VCF 4.x

VCF 5.x

SDDC Manager requires certain permissions for users to be allowed to login to the SDDC Manager UI. 

Using an administrator account, login to SDDC Manager and assign the affected user a certain role like OPERATOR, ADMIN or VIEWER as per this documentation. 

Assign SDDC Manager Roles to Active Directory Groups for Identity and Access Management for VMware Cloud Foundation
https://techdocs.broadcom.com/us/en/vmware-cis/vcf/vvs/1-0/identity-and-access-management-for-vmware-cloud-foundation/implementation-of-identity-and-access-management/implementation-using-component-user-interfaces/configure-sddc-manager/configure-sddc-manager.html