SCIM not working after enabling view only license for our Organization

We have a SCIM setup in Azure for Asana. We have two groups through which the provisioning is happening. Enterprise Group and View only group. For each group, we have assigned a role
For example, view view-only role for view only group and the enterprise role for enterprise group.
We have user type attribute that assigns the license type as Enterprise or View only based on the group that the user is part of.

When I tried the on-demand provisioing by adding a user to the group, it is failing, and on the second retry it seems to work.

Below is the error that I am getting which basically means I am trying to provision for a user who is already has a account in Asana
Message: Processing of the HTTP request resulted in an exception. Please see the HTTP response returned by the ‘Response’ property of this exception for details. Web Response: {“errors”:[{“message”:“The request contains an email that is in use by another user”,“help”:“For more information on API status codes and how to handle them, read the docs on errors: https://developers.asana.com/docs/errors"}],“schemas”:[“urn:ietf:params:scim:api:messages:2.0:Error”],“detail”:"The request contains an email that is in use by another user”,“status”:“409”,“scimType”:“uniqueness”}

Sounds frustrating — that 409 error usually means SCIM is trying to create the user instead of updating them, even though they already exist in Asana. I’ve seen similar behavior where the first sync fails but the retry works, possibly due to timing or sync lag between Azure and Asana. Hopefully someone here who’s worked with dual-group provisioning in SCIM can share what fixed it for them.

Hi @Nikhil_Magadum, welcome to the Forum and thanks for reaching out! In order to investigate this issue and have a look at your account setup, I recommend you to contact our support team: How to contact our Support Team 📧. Once of our agents will be in touch and would be happy to help!