This article addresses the requirement to enable two Enterprise connections that use the same email domain for Home Realm Discovery (HRD) during a user migration from one Identity Provider (IdP) to another. Enabling both connections simultaneously is necessary for testing purposes.

• Enterprise Connections
• Home Realm Discovery (HRD)
• User Migration

The system uses only one connection for redirecting a user if two connections share the same HRD domain. This approach avoids using HRD for both connections by utilizing a connection parameter.

1. Append a connection parameter to the /authorize request for the connection designated for testing. This action routes the user directly to the specified connection, allowing regular users to continue leveraging the HRD configured for the original connection.
2. When testing is complete, remove HRD from the old connection.
3. Select Add to apply HRD to the new connection.

Related References

• Home Realm Discovery
• Parameters for the /authorize request