Customer is importing User via CIT. All user data is up to date once the import was done. However, when SAML user logs in, the vaules will be sync-ed to SMAX.
In customer's case, ADFS does not expose all attributes from AD (for example, office phone number has value in AD, but ADFS cannot expose this field), thus even we mapped the corresponding fields, those like office phone number will be set to NULL in BO.
They are expecting to keep the user data imported from CIT, that SMAX stops the sync from SAML, or overwritting the fields which already have value in BO.
The authenication should authenticate users only, not to update the existing data.