Many customers are migrating from AD/LDAP to SAML SSO to use take advantage of Single sign on, 2 factor MFA, etc.
...
Additionally, ensure that you have claims for the the email, first, and last name. They are used to help setup new users.
However, if you have group mapping enabled with an LDAP realm, that isn’t yet supported on for SSO, with either SAML or OIDC. This is something that Flexagon is considering adding to our road map, but it isn’t there yet. If you want to transfer your current groups from your LDAP mapped groups, there is a sql query you can use to transfer data for this purpose. If you don’t do that, then the groups will be missing. Future groups won’t be added for you after the transition, so if group mapping is important to you, it may not be time to transition yet.