Manage Federation Broker Mode
Federation Broker Mode allows for Single Sign-On (SSO) without the need to pre-assign apps to specific users. Access is managed only by the sign-on policy and the authorization rules of each app. This mode can improve import performance and can be especially helpful for customer identity and access management (CIAM) orgs with many users or apps.
If you have a large number of group assignments, enabling or disabling Federation Broker Mode can consume substantial processing resources and take a significant time to complete.