We have our portal setup with Azure SSO for users to authenticate into the Portal. Currently Azure enables a user's group membership to be sent in the sign on packet. We would like to be able to have users automatically added and removed from Azure AD Groups that have been created in Portal (via the "Being a Member of a SAML Group Option"). The SAML groups option does not identify Azure based user group membership. We would also like Azure Group searchability which is currently implemented for on premise windows domains, but not Azure, through the identify provider setting in Portal Admin.
This would unify the portal home capabilities with the portal admin capabilities.