When Office 365 users try to logon to Box.com using the Single Sign On (SSO) opttion they receive an error message that says "AADSTS50105: The signed in user 'email@example.com' is not assigned to a role for the application '23255106-946e-4c11-8170-1
I used the instructions from this website to generate the metadata file for Azure Single Sign On (SSO) for Box.com: https://docs.microsoft.com/en-us/azure/active-directory/active-directory-saas-box-tutorial
This occurs even though Box has been configured to use Azure to logon to Box and all Azure users have been assigned E1 and E5 Office 365 licenses.
Currently I am in Step 1: Test the connection and have put a checkmark in the "SSO Test Mode" box.
I have submitted an urgent tech support request to Box but haven't heard back from them yet.
What else needs to be done to fix this issue so that this organization will be able to use Single Sigon on (SSO) through Azure to authenticate the Office 365 users to logon to Box.com?
Do the Office 365 users need to be assigned additional or different licenses?
Please let me know if any further information is needed.