If you want to enable JIT provisioning for users,
Create Prisma Cloud Roles before you
continue to the next step. When you configure SSO on AD FS, you
must attach this role to the user‘s profile so that the user has
the appropriate permissions and can monitor the assigned cloud accounts
on Prisma Cloud.