Summary

The error "Failed to update User 'username@domain' in AtlassianCloud" appears when attempting to provision a user account on-demand from the Atlassian Cloud Enterprise Application in Azure.

Replicating the issue

Following the steps below (provision on demand):

1. Login to your Azure Portal.
2. Click on Enterprise applications.
3. Click on your Atlassian Cloud application.
4. Click on Provisioning under the Manage section.
5. Click on Provision on demand.
6. Search for the user and select it.
7. Click on Provision.

Results in the error:

{"schemas":\["urn:ietf:params:scim:api:messages:2.0:Error"],"status":"409","scimType":"uniqueness","detail":"Resource \[USER]: with email\[email@domain] already exists."}

There are different possibilities that could cause this issue:

• Atlassian Cloud backend has a SCIM record with the same email
• Atlassian Cloud backend has a SCIM record with the same UserPrincipalName
• Atlassian Cloud backend has a SCIM record with the same ObjectID

Contact Atlassian Support to fix

Reach out to Atlassian Support by opening a new ticket, and providing the following information in the description:

• ObjectID of the Azure account you are trying to provision.
• Let us know if the email of the Active Directory account was modified
  • Provide us with the old and new email.
• Let us know if the UserPrincipalName of the Active Directory account was modified.
  • Provide us with the old and new UserPrincipalName.

The support team will assist you with removing any conflicting stale records from your directory in the backend.

Afterwards, you can proceed to provision on demand the user again, unless automated provisioning already completed and then this is no longer needed.