SAML SSO with Azure AD does not work when using "Continue with Microsoft"

@Dominik Aigner 

As per previous interactions with Atlassian support – "Continue with Microsoft" uses some mysterious instance of "Atlassian" OAuth enterprise application in Azure AD, which is indeed distinct from the "Atlassian Cloud" you would configure for SAML.

I can only suggest to reach out to Atlassian support, but don't expect much. I was not able to get any details on how to configure this app, and specifically how to disable it properly.

As per Atlassian response to me at the time:

We do not have an official documentation on this one as this is purely Microsoft workflow. I suggest to reach out to Microsoft as well to see if they have some information on this one as we don't have any visibility on this. We tested removing this application and yes this seems to be the case that it will be re-created automatically.

Based on the error you are getting this application currently is not deployed/configured correctly in your Azure AD.

If you do get it configured while having SAML SSO configured as well, the flow for the user would be very similar, so it becomes merely a somewhat handy shortcut.

Without SAML SSO configured there is a distinction. See answer here: https://community.atlassian.com/t5/Atlassian-Access-questions/Azure-AD-integration-difference-between-OAuth-and-SAML/qaq-p/1511680

We (TechTime, a Platinum Atlassian Solution Partner in Aotearoa – New Zealand) usually recommend to our customers to instruct their users "not to use this social login", but since it's impossible to disable, and impossible to get rid of – this is kinda moot.

Atlassian Support did provide this ticket to vote on to make this "social login" flow work the same as the SAML one:

https://jira.atlassian.com/browse/ACCESS-894

There is also this one to be able to disable this button

https://jira.atlassian.com/browse/ID-6647