There is already a QCCR opened for this request -QCCR1E149323
It is said that an idea exchange is required.
The backgroud is that in SAML enabled environment, custom created one script by their own which imports users to IDM directly, along with additional user rights settings.
This can happen because of a delay in the import job. The user is created in SAML IDP but not imported in SMAX as the script has not been run yet. This leads two different issues:
a> The automatically created user do not get the right settings like the imported users.
b> When the user is imported by the scheduled script we end up with a duplicate and the user is not able to log on